Další formáty:
BibTeX
LaTeX
RIS
@article{1384918,
author = {BouandHarb, Elias and Husák, Martin and Debbabi, Mourad and Assi, Chadi},
article_number = {4},
doi = {http://dx.doi.org/10.1109/TBDATA.2017.2723398},
keywords = {Darknet sanitization;Time series analytics;Security analytics;Cyber threat intelligence},
language = {eng},
issn = {2332-7790},
journal = {IEEE Transactions on Big Data},
title = {Big Data Sanitization and Cyber Situational Awareness: A Network Telescope Perspective},
url = {https://ieeexplore.ieee.org/document/7968317},
volume = {5},
year = {2019}
}
TY - JOUR
ID - 1384918
AU - Bou-Harb, Elias - Husák, Martin - Debbabi, Mourad - Assi, Chadi
PY - 2019
TI - Big Data Sanitization and Cyber Situational Awareness: A Network Telescope Perspective
JF - IEEE Transactions on Big Data
VL - 5
IS - 4
SP - 439-453
EP - 439-453
PB - IEEE
SN - 23327790
KW - Darknet sanitization;Time series analytics;Security analytics;Cyber threat intelligence
UR - https://ieeexplore.ieee.org/document/7968317
L2 - https://ieeexplore.ieee.org/document/7968317
N2 - This paper addresses the problems of data sanitization and cyber situational awareness by analyzing 910 GB of real Internet-scale traffic, which has been passively collected by monitoring close to 16.5 million darknet IP addresses from a /8 and a /13 network telescopes. First, the paper offers a novel probabilistic darknet preprocessing model, which aims at sanitizing darknet data to prepare it for effective use in the task of cyber threat intelligence generation. Such model has been engineered using a distributed multithreaded approach, rendering it highly effective on darknet big data. Second, the paper further contributes by presenting an innovative approach to infer large-scale orchestrated probing campaigns by leveraging darknet data, for Internet cyber situational awareness. The approach uniquely reduces the dimensionality of such big data by utilizing its artifacts, instead of processing the actual raw data. This is accomplished by extracting and analyzing probing time series using formal methods rooted in Fourier transform and Kalman filtering. Thorough empirical evaluations indeed validate the accuracy and the performance of the proposed methods. We assert that such approaches are of significant value, given their highly applicable nature to the field of Internet measurements for cyber security in the era of big data.
ER -
BOU-HARB, Elias, Martin HUSÁK, Mourad DEBBABI a Chadi ASSI. Big Data Sanitization and Cyber Situational Awareness: A Network Telescope Perspective. \textit{IEEE Transactions on Big Data}. IEEE, 2019, roč.~5, č.~4, s.~439-453. ISSN~2332-7790. Dostupné z: https://dx.doi.org/10.1109/TBDATA.2017.2723398.
|
