Skip navigation
Please use this identifier to cite or link to this item: https://ela.kpi.ua/handle/123456789/33876
Title: Signature and statistical analyzers in the cyber attack detection system
Other Titles: Сигнатурні та статистичні аналізатори в системі виявлення кібератак
Authors: Toliupa, Serhii
Nakonechnyi, Volodymyr
Uspenskyi, Oleksandr
Keywords: cyberspace
cyber attack
signature analyzer
decision-making system
cyber intrusion
кіберпростір
кібератака
сигнатурний аналізатор
система прийняття рішення
кібервторгнення
Issue Date: 2019
Publisher: Institute of Special Communication and Information Protection of National Technical University of Ukraine “Igor Sikorsky Kyiv Polytechnic Institute”
Citation: Toliupa, S. Signature and statistical analyzers in the cyber attack detection system / Serhii Toliupa, Volodymyr Nakonechnyi, Oleksandr Uspenskyi // Information Technology and Security. – 2019. – Vol. 7, Iss. 1 (12). – Pp. 69–79. – Bibliogr.: 11 ref.
Abstract: The globalization of information exchange and the widespread introduction of information technologies in all spheres of society's life created the problem of protecting information processed in information systems from challenges and threats in the cybernetic space. The presence of important information in the functioning of the systems and critical national infrastructures objects enables its usage by the negatively-minded elements and groupings for the implementation of unlawful actions in the cyberspace by violating the integrity, availability, and confidentiality of information, and inflicting damage on information resources and information systems. In this case, the possibility of using information technologies in the cybernetic space in the interests of carrying out military-political and power confrontation, terrorism, and hacking cyber attacks are of particular concern. Today, intrusion detection and attack systems are usually software or hardware-software solutions that automate the process of monitoring events occurring in the information system or network, and independently analyze these events in search of security issues signs. An analysis of modern approaches to the development of such systems shows that it is the signature analysis of network traffic provides effective results in the development of protection modules of cyber systems. In addition, for the reliable protection of information systems, it is not only necessary to develop separate mechanisms of protection, but also to implement a systematic approach that includes a set of interrelated measures. The purpose of the article is to develop a system for recognizing cyber threats based on signature analysis, which would reduce the time of an attack detection of a cyber defense system while the number and complexity of cyber attacks are increasing.
URI: https://ela.kpi.ua/handle/123456789/33876
DOI: https://doi.org/10.20535/2411-1031.2019.7.1.184326
Appears in Collections:Information Technology and Security, Vol. 7, Iss. 1 (12)

Files in This Item:
File Description SizeFormat 
ITS2019-7-1_07.pdf767.9 kBAdobe PDFThumbnail
View/Open
Show full item record


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.