Top

Cluster Computing

Published in:

24-02-2018

Analysis of alarms to prevent the organizations network in real-time using process mining approach

Authors: Ved Prakash Mishra, Balvinder Shukla, Abhay Bansal

Published in: Cluster Computing | Special Issue 3/2019

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

The analysis of alarms in the current intrusion detection system depends upon the manual system by network administrators. Due to the manual analysis, still many organizations are facing the false alarm problem causing the performance deficiency. In this manuscript, a model has been proposed for profile-based system, which will work on real time to analyze the suspicious activities and detect the intrusion automatically. The proposed model will also analyze the alarms to detect attacks and give the automatic response to prevent in real time. Processes were compared with original log events with tempered log events and the difference was found. Our extended work will be to develop the plugin in java with the combination of proposed algorithm, which could be imbedded in the tool to get the automatic response.

previous article Improved canny detection algorithm for processing and segmenting text from the images

next article Contrastive analysis of English literature comparative literature based on Bayesian clustering approach to big data

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Ambre, A., Shekokar, N.: Insider Threat Detection Using Log analysis and Event Correlation, Procedia Computer Science 45(2015), pp. 436–445. Elsevier Science Direct, Amsterdam (2015)

www.mcafee.com/us/resources/reports/rp-quarterly-threat-q1-2015.pdf. Accessed 27 May 2017

www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf. Accesse 27 May 2017

Pawar, M.V., Anuradha, J.: Network Security and Types of Attack in Network, Procedia Computer Science 48(2015), pp. 503–506. Elsevier Science Direct, Amsterdam (2015)

Salama, S.E., Marie, M.I., El-Fangary, L.M., Helmy, Y.K.: Web server logs preprocessing for web intrusion detection. Comput. Inf. Sci. 4(4), 123–133 (2011)

www.cisco.com; The Zettabyte Era: Trends and Analysis, Updated: June 7, 2017, Document ID: 1465272001812119

Mostaque, Md, Hassan, M.: Current studies on intrusion detection system, genetic algorithm and fuzzy logic. Int. J. Distrib. Parallel Syst. (IJDPS) 4(2), 35–47 (2013)CrossRef

Corney, M., Mohay, G., Clack, A.: Detection of Anomalies from User Profiles Generated from System Logs, AISC 2011, Perth Australia, CRPIT Volume 116-Information Security 2011, pp. 23–31 (2011)

Security in Wireless Sensor Networks: Key Management Module in EECBKM”, World Congress on Computing and Communication Technologies on Feb 27–28 and 1st March 2014, on St. Joseph College, Trichy. http://doi.ieeecomputersociety.org/10.1109/WCCCT.2014.125

10.

de Alvarenga, S.C., Zarpelão, B.B., Barbon, S., Jr., Miani, R.S., Cukier, M.: Discovering Attack Strategies Using Process Mining, AICT 2015: The Eleventh Advanced International Conference on Telecommunications, pp. 119–125 (2015)

11.

Beerra, F., Wainer, J.: Anomaly detection algorithms in business process logs, ICEIS 2008. In: Proceedings of the Tenth International Conference on Enterprise Information Systems, AIDSS (2008)

12.

Escamilla, T.: Intrusion Detection: Network Security Beyond the Firewall. Wiley, New York, NY, USA. ISBN:0-471-29000-9, ACM, (1998)

13.

Bezerra, F., Wainer, J.: Anomaly detection algorithms in logs of process aware systems, SAC 2008: In: Proceedings of the 2008 ACM Symposium on Applied Computing, ACM Press, pp. 951–952 (2008)

14.

Van der Aalst, W.M.P.: Process Mining: Discovery, Conformance and Enhancement of Business Processes. Springer, New York (2011)CrossRef

15.

Claes, J., Poels, G.: Merging event logs for process mining: a rule based merging method and rule suggestion algorithm. Expert Syst. Appl. 41(16), 7291–7306 (2014)CrossRef

16.

Green Technologies for the Energy-optimized Cloud. Asian J. Res. Soc. Sci. Hum. 6(6), Special Issue June (2016)

17.

Bae, J., Liu, L., Caverlee, J., Rouse, W.B.: Process mining, discovery, and integration using distance measures. In: IEEE International Conference on Web Services (ICWS’06) (2006)

18.

www.processmining.org. Accessed 30 Sep 2017

19.

Mishra, V.P., Balvinder, S.: Process Mining in Intrusion Detection—The Need of Current Digital World. Springer Nature Singapore Pte Ltd. 2017: CCIS 712, pp. 238–246 (2017)

20.

Mishra, V.P., Balvinder, S.: Development of Simulator for Intrusion Detection System to Detect and Alarm the DDoS Attacks. In: IEEE International Conference on Infocom Technologies and Unmanned Systems (ICTUS’2017) (Trends and Future Directions), 10–12 December 2017 (2017)

21.

Mishra, V.P., Yogesh, W., Subheshree, J: Detecting attacks using big data with process mining. Int. J. Syst. Model. Simul. 2(2), 5–7 (2017)CrossRef

Title: Analysis of alarms to prevent the organizations network in real-time using process mining approach
Authors: Ved Prakash Mishra
Balvinder Shukla
Abhay Bansal
Publication date: 24-02-2018
Publisher: Springer US
Published in: Cluster Computing / Issue Special Issue 3/2019
Print ISSN: 1386-7857
Electronic ISSN: 1573-7543
DOI: https://doi.org/10.1007/s10586-018-2064-8

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Other articles of this Special Issue 3/2019

The signaling game model under asymmetric fairness-concern information

An extra spatial hierarchical schema in key-value store

A scalable product configuration model and algorithm

Integrating predicate reasoning and reactive behaviors for coordination of multi-robot systems

Word sense disambiguation based on dependency constraint knowledge

Feature selection for software effort estimation with localized neighborhood mutual information

Premium Partner