文章基本信息

标题：Design of adaptive system of detection of cyber-attacks, based on the model of logical procedures and the coverage matrices of features
本地全文：下载
作者：Valeriy Lakhno ; Svitlana Kazmirchuk ; Yulia Kovalenko 等
期刊名称：Eastern-European Journal of Enterprise Technologies
印刷版ISSN：1729-3774
电子版ISSN：1729-4061
出版年度：2016
卷号：3
期号：9
页码：30-38
DOI：10.15587/1729-4061.2016.71769
语种：English
出版社：PC Technology Center
摘要：The results of the research aimed at the further development of detection models of cyber threats, as well as of common classes of anomalies and cyber-attacks in mission critical computer systems (MCCS) are presented.It is shown that one of the promising directions of synthesis of adaptive systems of detection and prevention of cyber-attacks is the application of models of logical procedures of detection, based on the coverage matrices of features of anomalies, threats and cyber-attacks within the known and new classes of the MCCS intrusions. The model of detection of cyber-attacks, anomalies and threats to MCCS was designed, which is based on the application of learning samples in the form of matrices of features and elementary classifiers for each of the modeled classes.The studies on minimization of the number of training samples, represented in a binary form of discerning features were carried out. The program "Threat Analyzer” was developed which allows automatic generation of dimensions of training matrix of features of anomalies, cyber threats, or cyber-attacks, without requiring the participation of experts.It is shown that for the object detection within known classes of cyber threats, attacks, anomalies, the usage in the training matrices of representative sets of 3-4 features long allows maximizing the effectiveness of the algorithm, reaching up to 98 %.
关键词：adaptive system of detection of cyber threats;features of a cyber- attack;logical procedures;elementary classifier