Email this article Implementation and operation aspects of a system for detecting abnormally level of user activity
- Authors: Osipov P.A.1, Aleksejeva L.Y.1, Borisov A.N.1, Chizhov Y.A.2, Zmanovska T.P.1, Zabiniako V.M.2
-
Affiliations:
- Riga Technical University
- ABC Software Ltd.
- Issue: Vol 51, No 6 (2017)
- Pages: 417-425
- Section: Article
- URL: https://journals.rcsi.science/0146-4116/article/view/174970
- DOI: https://doi.org/10.3103/S0146411617060050
- ID: 174970
Cite item
Open Access
Access granted
Subscription Access
Abstract
The present paper discusses various aspects of embedding the intrusion detection system based on the personal adaptive behavior profile into the existing complex information system. The paper proposes the classification of types of access to the target information infrastructure in order to assess the feasibility of the established system integration. The criteria for evaluating the effectiveness of the implementation of the established system are also described. A method for calculating the dynamic threshold level of abnormality is proposed in the present research. The paper also considers a technique of adjusting the sensitivity of the system in case of abnormal user behavior. The paper describes the approach used for system scaling in case of an increase in the intensity of the incoming requests.
About the authors
P. A. Osipov
Riga Technical University
Author for correspondence.
Email: pavels.osipovs@gmail.com
Latvia, Riga, LV, 1658
L. Ya. Aleksejeva
Riga Technical University
Email: pavels.osipovs@gmail.com
Latvia, Riga, LV, 1658
A. N. Borisov
Riga Technical University
Email: pavels.osipovs@gmail.com
Latvia, Riga, LV, 1658
Yu. A. Chizhov
ABC Software Ltd.
Email: pavels.osipovs@gmail.com
Latvia, Riga, LV, 1039
T. P. Zmanovska
Riga Technical University
Email: pavels.osipovs@gmail.com
Latvia, Riga, LV, 1658
V. M. Zabiniako
ABC Software Ltd.
Email: pavels.osipovs@gmail.com
Latvia, Riga, LV, 1039
