Search or add a thesis

Advanced Search (Beta)
Home > An Anomaly Based Adaptive Fuzzy Framework for Detecting Network Intrusions

An Anomaly Based Adaptive Fuzzy Framework for Detecting Network Intrusions

Thesis Info

Access Option

External Link

Author

Habib Ullah Baig

Program

PhD

Institute

University of Engineering and Technology

City

Taxila

Province

Punjab

Country

Pakistan

Thesis Completing Year

2012

Thesis Completion Status

Completed

Subject

Applied Sciences

Language

English

Link

http://prr.hec.gov.pk/jspui/handle/123456789/1734

Added

2021-02-17 19:49:13

Modified

2024-03-24 20:25:49

ARI ID

1676725466137

Similar


Anomaly based Intrusion detection systems have proved their worth by detecting zero age intrusions but suffers from large number of false alarms mainly because of imprecise definitions of their normal profile or detection models. Building accurate and precise normal profiles or detection models for intrusion detection is a complex process. It is because it involves highly dynamic network behavior, concept drift phenomenon and evolving intrusion patterns. To accommodate these network dynamics in intrusion de- tection models, we require extensive training data-sets. These data sets must contain a uniform distribution of theoretically possible intrusion patterns and normal network traffic instances. Deviation in training data-set with real time network data and skewed class distribution in training data set will result in a biased detection model. Concept drift phenomenon, huge network data, highly imbalance traffic distribution, addition of new applications and abstract boundaries between normal and abnormal behavior has limited the accuracy of generalized detection models or shortened their detection models useful life. Due to these limitations and complexities in building long term intrusion de- tection models, it is proposed in this thesis that instead of building a generalized profile responsible for detecting all the intrusions it is more helpful if short-term profiles are used to detect an intrusion or even a phase of an intrusion active in certain time space. These short term profiles are evolved by changing cost functions according to changed anomaly conditions, current network traffic patterns and security policies. The evolved profiles remain valid for a short period of time in which network dynamics can be as- sumed as piece-wise linear. In this thesis an anomaly based Adaptive SEmi-supervised Evolutionary Security (ASEES) fuzzy framework is proposed. It is based on adaptive distributed and cooperative fuzzy agents which use evolved short-term profiles. These profiles are evolved for different objectives to detect specific intrusions. Evolved pro- files are switched and activated according to current network and anomaly conditions, network security policies and based on forecasted attacks. The ASEES fuzzy framework is tested under two different attacks; DoS attack and viireconnaissance attack i.e. port scan. The results show good detection times and high detection rate due to similarity of the training and testing data-set. The results also shows a performance increase in using short term profiles along with generalize normal profiles for denial of service attacks.
Loading...
Loading...

Similar Books

Loading...

Similar Chapters

Loading...

Similar News

Loading...

Similar Articles

Loading...

Similar Article Headings

Loading...

110. An-Nasr/Help

110. An-Nasr/Help

I/We begin by the Blessed Name of Allah

The Immensely Merciful to all, The Infinitely Compassionate to everyone.

110:01
a. When Allah’s help arrives and HE opens up your way to victory after victory,

110:02
a. then you see people entering Allah’s Religion of Islam en-mass, in swarming crowds.

110:03
a. So glorify your Rabb - The Lord with HIS Praise,
b. and seek HIS Forgiveness.
c. Surely HE is the Acceptor of Repentance and Ever-Pardoning.

اسلامی تصوف کے مصادر اور مستشرقین كى آراء کا ایک تجزیاتی مطالعہ

The issue of the source and origin of Sufism in Islam is a complex one. A number of scholars, since the latter half of the nineteenth century have put forward conflicting claims. Earlier Orientalists thought that a Sufism developed from a single source while the latter scholars think a number of different sources should be considered as origin of Sufism. Both groups agree, however, in maintaining that Sufism is an addition to Islam and did not originally belong to Islam.  Different opinions have been presented regarding the true source of Sufism, for example, Persian, Indian, Christian, Jewish and Neo-Platonic philosophies. The present paper intends to refute these charges of external influences on Islamic Sufism and attempts to show that the real origin of Islamic Sufism lies nowhere but in the teachings of the Holy Qur’an, Sunnah of the Prophet (peace be upon him) and lives of the blessed companions of the Prophet (peace be upon him).

Elisa Based Surveillance of Bovine Fascioliasis in District Sargodha

An excretory/ secretory antigen based ELISA was developed for diagnosis of bovine fascioliasis and evaluated in field survey in district Sargodha in comparison with coprological examination and commercial kit (DRG Diagnostica). The study was divided into three experiments. First experiment was slaughter house based epidemiology of bovine fasciolasis. Livers, bile ducts and fecal samples of 146 cattle and 184 buffaloes were examined for presence of Fasciola from slaughter house of district Sargodha. Significantly higher prevalence was found in buffaloes as compared to cattle in both coprological (χ2=25.312; P-value=0.0080) and fecal examination (χ2=17.453; P value=0.0001). By coprological examination, Fasciola eggs were detected in 29.89% (55/184) buffaloes and in 20.55% (30/146) cattle whereas 48.37% (89/184) buffaloes and 37.67% (55/146) cattle were found infected during liver examination. Sex was found to be non-significantly associated with risk of infection while negative association was found between age and occurrence of disease. Prevalence of disease was lower in higher age groups. In second experiment, development and standardization of ES antigen based ELISA was conducted. Adult Fasciola and blood samples were collected from 146 cattle and 184 buffaloes. Excretory/ secretory antigens were prepared by incubating adult Fasciola in PBS for 6-8 hrs and then filtering through 0.22 μm syringe filter. Then checker board titration was performed and optimum concentration of antigen and serum was determined and used in screening of all serum samples. Seroprevalence was found to be 50% and 38.35% in buffaloes and cattle, respectively. In house ELISA was found to be 100 % sensitive while specificity was 96.84% in buffaloes and 98.90% in cattle. In third experiment, serological and coprological survey of bovine fascioliasis of district Sargodha was carried out. A total of 600 blood samples and 5580 fecal samples were collected from all six tehsils of district Sargodha. Sedimentation- floatation technique was adopted to identify Fasciola egg in feces. Sera were screened for presence of antifasciola antibodies by indigenous ELISA kit and DRG kit. Both kits were equally sensitive while indigenous ELISA was more specific. The highest prevalence was found during month of December in both serological and coprological examination. Higher prevalence was recorded in tehsil Bhalwal, Sahiwal and Shahpur as compared to Sargodha, Kot-Momin and Silanwali. Risk of fascioliasis was found to be negatively associated (OR=1.181; χ2=105.6757; P-value <0.0001) with age categories, highest prevalence of fascioliasis in >2-4 years age group and then decreasing with advancing age. Sex was found to be non-significantly associated with disease. As for managemental practices are concerned, higher prevalence was found in grazing group (χ2=61.3443; P-value <0.0001), pond watered and river watered group (χ2=89.7096; P-value <0.0001) as compared to stall feeding and tap watered group.