Server Monitoring Application for Insider Attack Detection and Prevention
Journal Title: Gazi Üniversitesi Fen Bilimleri Dergisi Part C: Tasarım ve Teknoloji - Year 2018, Vol 6, Issue 3
Abstract
Although insider attacks have increased rapidly in recent years and cause enormous damages, there are very few academic studies that have investigated this problem and proposed a solution. Many of these attacks are kept private for reasons such as loss of prestige and advantage of competing companies. The main difference between insider attacks and external attacks is that in the former case, attackers are authorized users in the organization. This causes countermeasures against external attacks to be useless and facilitates the exploitation of weaknesses. In the detection of insider attacks, all unusual events need to be scrutinized. Therefore, risk assessment should be done first to determine vulnerabilities against insider attacks and necessary precautions should be taken in this direction. In this study, general insider attack features and past attacks were investigated, and a server monitoring application was developed to detect suspicious activities. Organizations using this system will be informed about their level of risk, and improve their level of preparation and ability to identify potential attackers by analyzing the collected data.
Authors and Affiliations
Halil İbrahim ULUS, Mehmet DEMİRCİ
Keywords
Related Articles
- EP ID EP490828
- DOI 10.29109/gujsc.351365
- Views 81
- Downloads 0
Effects of Boron Phosphate Additive on Ceramics with Anorthite Phase
In this study, the anorthite phase was chosen as a ceramic type that can withstand thermal shock. First, boron phosphate was synthesised, boron phosphate was calcined at 1000°C and characterized by XRD and chemical analy...
The Comparision of Heating and Cooling Performance of a Serial and Parallel Connected Counter Flow Ranque–Hilsch Vortex Tube
In this study, two counter flow Ranque-Hilsch Vortex Tubes with body length 100 mm and inlet diameter 7 mm were used having no moving parts except a control valve for adjustment of volume flow rates. Six-orifice nozzles...
Bit Error Rate Performance Analyses of DS-CDMA Systems for Different Spreading Codes in Weibull Fading Channels
Wireless communication systems are one of the most dynamic areas of contemporary research and development areas. In recent years, one of the most popular wireless technologies is direct-sequence code division multiple ac...
The Investigation of viscosity values of Aluminum Powder Reinforced Polypropylene.
In this study, aluminum (Al) powder reinforced polypropylene based composites were produced and viscosity changes were investigated for the determination of flow properties of composites. Experiments have been carried ou...
Walking Analysis Systems Used in the Diagnosis and Follow-up of Diseases
Gait pattern can be characterized by many measurable parameters like heel strike timing, toe off timing, stride length, stride velocity, motion displacement, pressure distribution under the foot, orientation of the feet...