nach oben

Mobile Networks and Applications

Erschienen in:

06.06.2021

Methodology for Detecting Cyber Intrusions in e-Learning Systems during COVID-19 Pandemic

verfasst von: Ivan Cvitić, Dragan Peraković, Marko Periša, Anca D. Jurcut

Erschienen in: Mobile Networks and Applications | Ausgabe 1/2023

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

In the scenarios of specific conditions and crises such as the coronavirus pandemic, the availability of e-learning ecosystem elements is further highlighted. The growing importance for securing such an ecosystem can be seen from DDoS (Distributed Denial of Service) attacks on e-learning components of the Croatian e-learning system. The negative impact of the conducted attack is visible in numerous users who were prevented from participating in and implementing the planned teaching process. Network anomalies such as conducted DDoS attacks were identified as one of the crucial threats to the e-learning systems. In this paper, an overview of the network anomaly phenomenon was given and botnets’ role in generating DDoS attacks, especially IoT device impact. The paper analyzes the impact of the COVID-19 pandemic on the e-learning systems in Croatia. Based on the conclusions, a research methodology has been proposed to develop a cyber-threat detection model that considers the specifics of the application of e-learning systems in crisis, distinguishing flash crowd events from anomalies in the communication network. The proposed methodology includes establishing a theoretical basis on DDoS and flash crowd event traffic, defining a laboratory testbed setup for data acquisition, development of DDoS detection model, and testing the applicability of the developed model on the case study. The implementation of the proposed methodology can improve the quality of the teaching process through timely DDoS detection and it gives other socio-economic contributions such as developing a specific research domain, publicly available dataset of network traffic, and raising the cyber-security of the e-learning systems.

Vorheriger Artikel Knowledge and Skills of Industrial Employees and Managerial Staff for the Industry 4.0 Implementation

Nächster Artikel Correction to: Methodology for Detecting Cyber Intrusions in e-Learning Systems during COVID-19 Pandemic

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

ATZelektronik

Die Fachzeitschrift ATZelektronik bietet für Entwickler und Entscheider in der Automobil- und Zulieferindustrie qualitativ hochwertige und fundierte Informationen aus dem gesamten Spektrum der Pkw- und Nutzfahrzeug-Elektronik.

Lassen Sie sich jetzt unverbindlich 2 kostenlose Ausgabe zusenden.

Jetzt informieren

ATZelectronics worldwide

ATZlectronics worldwide is up-to-speed on new trends and developments in automotive electronics on a scientific level with a high depth of information.

Order your 30-days-trial for free and without any commitment.

Jetzt informieren

Chaabouni N, Mosbah M, Zemmari A, Sauvignac C, Faruki P (2019) Network intrusion detection for IoT security based on learning techniques. IEEE Commun Surveys Tutor. 21(3):2671–2701CrossRef

Deka RK, Bhattacharyya DK (2016) Self-similarity based DDoS attack detection using Hurst parameter. Security and Communication Networks. 9(17):4468–81. Available from http://doi.wiley.com/10.1002/sec.1639 [accessed 2017 Jun 16]

Huu Phuoc Dai N, Kerti A, Rajnai Z (2016) E-learning security risks and its countermeasures. J Emerg Res Solut ICT 1(1):17–25CrossRef

Povećano opterećenje sustava AAI@EduHr | Srce [Internet]. Available from https://www.srce.unizg.hr/vijesti/povecano-opterecenje-sustava-aaieduhr/objav2020-03-16 [accessed 2020 Apr 4]

Kaspersky. DDoS attacks against educational resources increased by more than 350% this spring [Internet]. 2020. Available from https://www.kaspersky.com/about/press-releases/2020_ddos-attacks-against-educational-resources-increased-by-more-than-350-this-spring [accessed 2020 Oct 10]

Tan Z, Jamdagni A, He X, Nanda P, Liu RP, Hu J. (2014) Detection of Denial-of-Service Attacks Based on Computer Vision Techniques. IEEE Transactions on Computers. (MAY):1–1. Available from http://ieeexplore.ieee.org/lpdocs/epic03/wrapper.htm?arnumber=6967763

David J, Thomas C (2015) DDoS attack detection using fast entropy approach on flow- based network traffic. Procedia Computer Science 50:30–6. Available from http://linkinghub.elsevier.com/retrieve/pii/S1877050915005086

Mirkovic J, Reiher P (2004) A taxonomy of DDoS attack and DDoS defense mechanisms. ACM SIGCOMM Comput Commun Rev 34(2):39. Available from http://portal.acm.org/citation.cfm?doid=997150.997156–53CrossRef

Bhuyan MH, Bhattacharyya DK, Kalita JK (2014) Network anomaly detection: methods, systems and tools. IEEE Commun Surveys Tutorials 16(1):303–336CrossRef

10.

Bhattacharyya DK, Kalita JK (2016) DDoS attacks: evolution, detection, prevention, reaction and tolerance. CRC Press, Boca RatonCrossRef

11.

Zeb K, AsSadhan B, Al-Muhtadi J, Alshebeili S (2016) Anomaly detection using Wavelet-based estimation of LRD in packet and byte count of control traffic. In: 2016 7th International Conference on Information and Communication Systems (ICICS). IEEE p. 316–21

12.

Xiang Y, Li K, Zhou W (2011) Low-rate DDoS attacks detection and traceback by using new information metrics. IEEE Trans Inf Forensics Secur 6(2):426–437CrossRef

13.

Zargar ST, Joshi J, Tipper D (2013) A survey of defense mechanisms against distributed denial of service (DDOS) flooding attacks. IEEE Commun Surveys Tutorials 15(4):2046–2069CrossRef

14.

Cvitić I, Peraković D, Periša M, Husnjak S. An overview of distributed denial of service traffic detection approaches. PROMET - Traffic&Transportation 2019;31(4):453–64. Available from https://traffic.fpz.hr/index.php/PROMTT/article/view/3082

15.

Cvitić I, Peraković D, Periša M, Botica M (2019) Novel approach for detection of IoT generated DDoS traffic. Wireless Networks. Available from https://doi.org/10.1007/s11276-019-02043-1

16.

Peraković D, Periša M, Cvitić I, Husnjak S (2017) Model for detection and classification of DDoS traffic based on artificial neural network. Telfor Journal. 9(1)

17.

Ebner M, Schön S, Braun C, Ebner M, Grigoriadis Y, Haas M, et al. (2020) COVID-19 Epidemic as E-Learning Boost? Chronological Development and Effects at an Austrian University against the Background of the Concept of “E-Learning Readiness.” Future Internet 12(6):94. Available from https://www.mdpi.com/1999-5903/12/6/94

18.

Soni VD (2020) Global Impact of E-learning during COVID 19. SSRN Electronic Journal. (June). Available from https://www.ssrn.com/abstract=3630073

19.

Adzovie DE, Jibril AB, Holm R, Nyieku IE (2020) E-Learning Resulting From Covid-19 Pandemic: A Conceptual Study From a Developing Country Perspective Daniel. In: 7th European Conference on Social Media ECSM. Academic Conferences and Publishing International Limited; 2020. p. 1689–99

20.

Radha R, Mahalakshmi K, Kumar VS, Saravanakumar AR (2020) E-learning during lockdown of Covid-19 pandemic: a global perspective. Intl J Control Autom 13(4):1088–1099

21.

Aggarwal CC (2017) Outlier Analysis [Internet]. Vol. 24, Artificial Intelligence Review. Cham: Springer International Publishing. 379–384 p. Available from http://link.springer.com/10.1007/978-3-319-18123-3%0Ahttp://link.springer.com/10.1007/978-3-319-40415-8%0Ahttp://link.springer.com/10.1007/978-3-319-53480-0%0Ahttp://link.springer.com/10.1007/978-3-319-55753-3%0Ahttp://link.springer.com/10.1007/978-3-319-

22.

Hayward C, Madill A (2004) A survey of outlier detection methodologies. Artif Intell Rev 22(2):85–126CrossRef

23.

Jain AK, Gupta BB (2016) A novel approach to protect against phishing attacks at client side using auto-updated white-list. Eurasip Journal on Information Security. 2016(1)

24.

Chandola V, Banerjee A, Kumar V (2009) Anomaly detection. ACM Comput Surv 41(3):1–58CrossRef

25.

Bhattacharyya DK, Kalita JK (2014) Network anomaly detection: a machine learning perspective. CRC Press, Boca Raton

26.

Ahmed M, Naser Mahmood A, Hu J (2016) A survey of network anomaly detection techniques. J Netw Comput Appl 60:19–31 Available from https://doi.org/10.1016/j.jnca.2015.11.016CrossRef

27.

Baddar SHA, Merlo A, Migliardi M (2014) Anomaly detection in computer networks: A state-of-the-art review. Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications. (December)

28.

Xiong L, Póczos B, Schneider J (2011) Group anomaly detection using Flexible Genre Models. In: Proceedings of the 24th International Conference on Neural Information Processing Systems. p. 1071–9. Available from https://dl.acm.org/citation.cfm?id=2986579

29.

Difallah DE, Cudre-Mauroux P, McKenna SA (2013) Scalable anomaly detection for smart city infrastructure networks. IEEE Internet Comput 17(6):39–47CrossRef

30.

Bhardwaj K, Miranda JC, Gavrilovska A (2018) Towards IoT-DDoS Prevention Using Edge Computing. USENIX Workshop on Hot Topics in Edge Computing (HotEdge 18). Available from https://www.usenix.org/biblio-1765

31.

Gupta BB, Badve OP (2017) Taxonomy of DoS and DDoS attacks and desirable defense mechanism in a cloud computing environment. Neural Comput & Applic 28(12):3655–3682CrossRef

32.

Tripathi N, Mehtre B (2013) DoS and DDos Attacks: Impact, Analysis and Countermeasures. In: Proceedings of National Conference on Advances in Computing, Networking and Security. p. 1–6

33.

Hussain A, Heidemann J, Papadopoulos C (2003) A Framework for Classifying Denial of Service Attacks. In: Applications technologies architectures and protocols for computer communications (SIGCOMM 03). New York, USA; p. 99–110

34.

Cvitić I. (2020) Network traffic anomaly detection based on traffic characteristics and device class affiliation. Doctoral thesis University of Zagreb

35.

De Donno M, Giaretta A, Dragoni N, Spognardi A (2017) A taxonomy of distributed denial of service attacks. In: 2017 International Conference on Information Society (i-Society). IEEE; p. 100–7. Available from https://ieeexplore.ieee.org/document/8354681/

36.

Douligeris C, Mitrokotsa A (2004) DDoS attacks and defense mechanisms: classification and state-of-the-art. Comput Netw 44(5):643–666CrossRef

37.

Hallman R, Bryan J, Palavicini G, Divita J, Romero-Mariona J (2017) IoDDoS — The Internet of Distributed Denial of Sevice Attacks - A Case Study of the Mirai Malware and IoT-Based Botnets. In: Proceedings of the 2nd International Conference on Internet of Things, Big Data and Security. p. 47–58

38.

Adat V, Gupta BB (2018) Security in internet of things: issues, challenges, taxonomy, and architecture. Telecommun Syst 67(3):423–441CrossRef

39.

Stergiou C, Psannis KE, Gupta BB, Ishibashi Y (2018) Security, privacy & efficiency of sustainable cloud computing for big data & IoT. Sustain Comput Inform Syst 19:174–184

40.

Stergiou CL, Psannis KE, Gupta BB (2020) IoT-based big data secure management in the fog over a 6G wireless network. IEEE Internet Things J 1–1. Available from https://ieeexplore.ieee.org/document/9239366/

41.

Tewari A, Gupta BB (2020) Security, privacy and trust of different layers in internet-of-things (IoTs) framework. Futur Gener Comput Syst 108:909–920CrossRef

42.

Bitdefender. 78% of Malware Activity in 2018 Driven by IoT Botnets, NOKIA Finds - Bitdefender BOX Blog [Internet]. Available from https://www.bitdefender.com/box/blog/iot-news/78-malware-activity-2018-driven-iot-botnets-nokia-finds/ [accessed 2019 Apr 1]

43.

Angrishi K. (2017) Turning Internet of Things(IoT) into Internet of Vulnerabilities (IoV) : IoT Botnets. Mind and Language 19(2):113–46. Available from http://arxiv.org/abs/1702.03681

44.

Antonakakis M, April T, Bailey M, Bursztein E, Cochran J, Durumeric Z, et al. (2017) Understanding the Mirai Botnet. Proceedings of the 26th USENIX Security Symposium. 1093–110. Available from https://www.usenix.org/conference/usenixsecurity17/technical-sessions/presentation/antonakakis

45.

Kolias C, Kambourakis G, Stavrou A, Voas J. DDoS in the IoT: Mirai and other botnets. Computer. 2017;50(7):80–4. Available from http://ieeexplore.ieee.org/document/7971869/

46.

De Donno M, Dragoni N, Giaretta A, Spognardi A (2018) DDoS-capable IoT malwares: comparative analysis and Mirai investigation. Secur Commun Netw 2018:1–30CrossRef

47.

Vlajic N, Zhou D (2018) IoT as a land of opportunity for DDoS hackers. Computer. 51(7):26–34CrossRef

48.

Bertino E, Islam N (2017) Botnets and internet of things security. Computer. 50(2):76–79CrossRef

49.

Spognardi A, Donno M De, Dragoni N, Giaretta A (2017) Analysis of DDoS-Capable IoT Malwares. Proceedings of the 2017 Federated Conference on Computer Science and Information Systems. 11(September):807–16

50.

Rekordan broj autentikacija putem SSO servisa sustava AAI@EduHr | Srce [Internet]. Available from https://www.srce.unizg.hr/vijesti/rekordan-broj-autentikacija-putem-sso-servisa-sustava-aaieduhr/objav2020-04-02 [accessed 2020 Apr 4]

51.

Behal S, Kumar K, Sachdeva M (2017) Discriminating flash events from DDoS attacks: a comprehensive review. Intl J Netw Secur 19(5):734–741

52.

Yu S, Zhou W, Jia W, Guo S, Xiang Y, Tang F (2012) Discriminating DDoS attacks from flash crowds using flow correlation coefficient. IEEE Trans Parallel Distrib Syst 23(6):1073–1080CrossRef

53.

Bhandari A, Sangal AL, Kumar K (2016) Characterizing flash events and distributed denial-of-service attacks: an empirical investigation. Secur Commun Netw. 9:2222–39. Available from http://doi.wiley.com/10.1002/sec.1472

54.

Cvitić I, Peraković D, Periša M, Jurcut AD (2020) Methodology proposal for proactive detection of network anomalies in e-learning system during the COVID-19 scenario. In: Proceedings of 5th EAI International Conference on Management of Manufacturing Systems (in print)

Titel: Methodology for Detecting Cyber Intrusions in e-Learning Systems during COVID-19 Pandemic
verfasst von: Ivan Cvitić
Dragan Peraković
Marko Periša
Anca D. Jurcut
Publikationsdatum: 06.06.2021
Verlag: Springer US
Erschienen in: Mobile Networks and Applications / Ausgabe 1/2023
Print ISSN: 1383-469X
Elektronische ISSN: 1572-8153
DOI: https://doi.org/10.1007/s11036-021-01789-3

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

ATZelektronik

ATZelectronics worldwide

Weitere Artikel der Ausgabe 1/2023

Intelligent Semantic Annotation for Mobile Services for IoT Computing from Heterogeneous Data

A Novel Approach to Enhance Safety on Drowsy Driving in Self-Driving Car

Prediction of user throughput from Network Parameters of LTE Network using machine learning

FP-RCNN: A Real-Time 3D Target Detection Model based on Multiple Foreground Point Sampling for Autonomous Driving

Component-Centric Mobile Cloud Architecture Performance Evaluation: an Analytical Approach for Unified Models and Component Compatibility with Next Generation Evolving Technologies

Industrial Internet of Things