Title :
Component Based Information Network for Computer Security
Author :
Ortiz, Javier ; Tomelden, J. ; Beheshti, M. ; Kowalski, Karol ; Han, Jinguang
Abstract :
At California State University Dominguez Hills, the Computer Science Department has created the "Computer Security Research Lab" (CSRL) to research and analyze ways to improve computer security at the network level. JACED is a program that will improve network and computer security. JACED will use data from sensors and mine the information to improve firewalls and detect new attacks. The sensors are equipped with the Snort Intrusion Detection System. Snort will sniff at traffic to detect malicious activity according to snort rules. The alerts generated by snort are stored in a data base, which will be mined using See5. See5 is a data mining tool used to detect patterns and display results as classifiers in rule sets or decision tree. Using this data mining strategy, JACED will try to predict harmful traffic to and from a network and predict new malicious attacks. JACED will then analyze format and sort the rules sets from the data mining results and convert them into firewall rules to prevent attacks.
Keywords :
authorisation; computer networks; data mining; database management systems; decision trees; information networks; pattern classification; telecommunication computing; telecommunication security; telecommunication traffic; JACED; See5; computer security; data base system; data mining; decision tree; firewall; information network; pattern classifier; snort intrusion detection system; Classification tree analysis; Computer security; Data mining; Database systems; Decision trees; Displays; Information technology; Intrusion detection; Network servers; Telecommunication traffic;
Conference_Titel :
Information Technology: New Generations, 2009. ITNG '09. Sixth International Conference on
Conference_Location :
Las Vegas, NV
Print_ISBN :
978-1-4244-3770-2
Electronic_ISBN :
978-0-7695-3596-8
DOI :
10.1109/ITNG.2009.333
