Leverage intrusion detection system framework for cyber situational awareness system

Bisyron Wahyudi Masduki; Kalamullah Ramli; Muhammad Salman

doi:10.1109/ICON-SONICS.2017.8267823

Leverage intrusion detection system framework for cyber situational awareness system

Bisyron Wahyudi Masduki, Kalamullah Ramli, Muhammad Salman

Department of Electrical Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

6 Citations (Scopus)

Abstract

As one of the security components in cyber situational awareness systems, Intrusion Detection System (IDS) is implemented by many organizations in their networks to address the impact of network attacks. Regardless of the tools and technologies used to generate security alarms, IDS can provide a situation overview of network traffic. With the security alarm data generated, most organizations do not have the right techniques and further analysis to make this alarm data more valuable for the security team to handle attacks and reduce risk to the organization. This paper proposes the IDS Metrics Framework for cyber situational awareness system that includes the latest technologies and techniques that can be used to create valuable metrics for security advisors in making the right decisions. This metrics framework consists of the various tools and techniques used to evaluate the data. The evaluation of the data is then used as a measurement against one or more reference points to produce an outcome that can be very useful for the decision making process of cyber situational awareness system. This metric offers an additional Graphical User Interface (GUI) tools that produces graphical displays and provides a great platform for analysis and decision-making by security teams.

Original language	English
Title of host publication	Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	64-69
Number of pages	6
ISBN (Electronic)	9781509062805
DOIs	https://doi.org/10.1109/ICON-SONICS.2017.8267823
Publication status	Published - 23 Jan 2018
Event	2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017 - Yogyakarta, Indonesia Duration: 8 Nov 2017 → 10 Nov 2017

Publication series

Name	Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017
Volume	2018-January

Conference

Conference	2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017
Country/Territory	Indonesia
City	Yogyakarta
Period	8/11/17 → 10/11/17

Keywords

GUI
attack
cyber situational awareness system
framework
intrusion detection system
metrics
network
security
threat

Access to Document

10.1109/ICON-SONICS.2017.8267823

Cite this

Masduki, B. W., Ramli, K., & Salman, M. (2018). Leverage intrusion detection system framework for cyber situational awareness system. In Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017 (pp. 64-69). (Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017; Vol. 2018-January). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICON-SONICS.2017.8267823

Masduki, Bisyron Wahyudi ; Ramli, Kalamullah ; Salman, Muhammad. / Leverage intrusion detection system framework for cyber situational awareness system. Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017. Institute of Electrical and Electronics Engineers Inc., 2018. pp. 64-69 (Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017).

@inproceedings{f46be698c330494eaaf70751817b8559,

title = "Leverage intrusion detection system framework for cyber situational awareness system",

abstract = "As one of the security components in cyber situational awareness systems, Intrusion Detection System (IDS) is implemented by many organizations in their networks to address the impact of network attacks. Regardless of the tools and technologies used to generate security alarms, IDS can provide a situation overview of network traffic. With the security alarm data generated, most organizations do not have the right techniques and further analysis to make this alarm data more valuable for the security team to handle attacks and reduce risk to the organization. This paper proposes the IDS Metrics Framework for cyber situational awareness system that includes the latest technologies and techniques that can be used to create valuable metrics for security advisors in making the right decisions. This metrics framework consists of the various tools and techniques used to evaluate the data. The evaluation of the data is then used as a measurement against one or more reference points to produce an outcome that can be very useful for the decision making process of cyber situational awareness system. This metric offers an additional Graphical User Interface (GUI) tools that produces graphical displays and provides a great platform for analysis and decision-making by security teams.",

keywords = "GUI, attack, cyber situational awareness system, framework, intrusion detection system, metrics, network, security, threat",

author = "Masduki, {Bisyron Wahyudi} and Kalamullah Ramli and Muhammad Salman",

year = "2018",

month = jan,

day = "23",

doi = "10.1109/ICON-SONICS.2017.8267823",

language = "English",

series = "Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "64--69",

booktitle = "Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017",

address = "United States",

note = "2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017 ; Conference date: 08-11-2017 Through 10-11-2017",

}

Masduki, BW, Ramli, K & Salman, M 2018, Leverage intrusion detection system framework for cyber situational awareness system. in Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017. Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017, vol. 2018-January, Institute of Electrical and Electronics Engineers Inc., pp. 64-69, 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017, Yogyakarta, Indonesia, 8/11/17. https://doi.org/10.1109/ICON-SONICS.2017.8267823

Leverage intrusion detection system framework for cyber situational awareness system. / Masduki, Bisyron Wahyudi; Ramli, Kalamullah ; Salman, Muhammad.
Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017. Institute of Electrical and Electronics Engineers Inc., 2018. p. 64-69 (Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017; Vol. 2018-January).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Leverage intrusion detection system framework for cyber situational awareness system

AU - Masduki, Bisyron Wahyudi

AU - Ramli, Kalamullah

AU - Salman, Muhammad

PY - 2018/1/23

Y1 - 2018/1/23

N2 - As one of the security components in cyber situational awareness systems, Intrusion Detection System (IDS) is implemented by many organizations in their networks to address the impact of network attacks. Regardless of the tools and technologies used to generate security alarms, IDS can provide a situation overview of network traffic. With the security alarm data generated, most organizations do not have the right techniques and further analysis to make this alarm data more valuable for the security team to handle attacks and reduce risk to the organization. This paper proposes the IDS Metrics Framework for cyber situational awareness system that includes the latest technologies and techniques that can be used to create valuable metrics for security advisors in making the right decisions. This metrics framework consists of the various tools and techniques used to evaluate the data. The evaluation of the data is then used as a measurement against one or more reference points to produce an outcome that can be very useful for the decision making process of cyber situational awareness system. This metric offers an additional Graphical User Interface (GUI) tools that produces graphical displays and provides a great platform for analysis and decision-making by security teams.

AB - As one of the security components in cyber situational awareness systems, Intrusion Detection System (IDS) is implemented by many organizations in their networks to address the impact of network attacks. Regardless of the tools and technologies used to generate security alarms, IDS can provide a situation overview of network traffic. With the security alarm data generated, most organizations do not have the right techniques and further analysis to make this alarm data more valuable for the security team to handle attacks and reduce risk to the organization. This paper proposes the IDS Metrics Framework for cyber situational awareness system that includes the latest technologies and techniques that can be used to create valuable metrics for security advisors in making the right decisions. This metrics framework consists of the various tools and techniques used to evaluate the data. The evaluation of the data is then used as a measurement against one or more reference points to produce an outcome that can be very useful for the decision making process of cyber situational awareness system. This metric offers an additional Graphical User Interface (GUI) tools that produces graphical displays and provides a great platform for analysis and decision-making by security teams.

KW - GUI

KW - attack

KW - cyber situational awareness system

KW - framework

KW - intrusion detection system

KW - metrics

KW - network

KW - security

KW - threat

UR - http://www.scopus.com/inward/record.url?scp=85047488377&partnerID=8YFLogxK

U2 - 10.1109/ICON-SONICS.2017.8267823

DO - 10.1109/ICON-SONICS.2017.8267823

M3 - Conference contribution

T3 - Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017

SP - 64

EP - 69

BT - Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017

Y2 - 8 November 2017 through 10 November 2017

ER -

Masduki BW, Ramli K , Salman M. Leverage intrusion detection system framework for cyber situational awareness system. In Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017. Institute of Electrical and Electronics Engineers Inc. 2018. p. 64-69. (Proceeding of 2017 International Conference on Smart Cities, Automation and Intelligent Computing Systems, ICON-SONICS 2017). doi: 10.1109/ICON-SONICS.2017.8267823

Leverage intrusion detection system framework for cyber situational awareness system

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this