Cargando…

Multivariable Heuristic Approach to Intrusion Detection in Network Environments

The Internet is an inseparable part of our contemporary lives. This means that protection against threats and attacks is crucial for major companies and for individual users. There is a demand for the ongoing development of methods for ensuring security in cyberspace. A crucial cybersecurity solutio...

Descripción completa

Detalles Bibliográficos
Autores principales: Niemiec, Marcin, Kościej, Rafał, Gdowski, Bartłomiej
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2021
Materias:
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8234388/
https://www.ncbi.nlm.nih.gov/pubmed/34205238
http://dx.doi.org/10.3390/e23060776
_version_ 1783714072501420032
author Niemiec, Marcin
Kościej, Rafał
Gdowski, Bartłomiej
author_facet Niemiec, Marcin
Kościej, Rafał
Gdowski, Bartłomiej
author_sort Niemiec, Marcin
collection PubMed
description The Internet is an inseparable part of our contemporary lives. This means that protection against threats and attacks is crucial for major companies and for individual users. There is a demand for the ongoing development of methods for ensuring security in cyberspace. A crucial cybersecurity solution is intrusion detection systems, which detect attacks in network environments and responds appropriately. This article presents a new multivariable heuristic intrusion detection algorithm based on different types of flags and values of entropy. The data is shared by organisations to help increase the effectiveness of intrusion detection. The authors also propose default values for parameters of a heuristic algorithm and values regarding detection thresholds. This solution has been implemented in a well-known, open-source system and verified with a series of tests. Additionally, the authors investigated how updating the variables affects the intrusion detection process. The results confirmed the effectiveness of the proposed approach and heuristic algorithm.
format Online
Article
Text
id pubmed-8234388
institution National Center for Biotechnology Information
language English
publishDate 2021
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-82343882021-06-27 Multivariable Heuristic Approach to Intrusion Detection in Network Environments Niemiec, Marcin Kościej, Rafał Gdowski, Bartłomiej Entropy (Basel) Article The Internet is an inseparable part of our contemporary lives. This means that protection against threats and attacks is crucial for major companies and for individual users. There is a demand for the ongoing development of methods for ensuring security in cyberspace. A crucial cybersecurity solution is intrusion detection systems, which detect attacks in network environments and responds appropriately. This article presents a new multivariable heuristic intrusion detection algorithm based on different types of flags and values of entropy. The data is shared by organisations to help increase the effectiveness of intrusion detection. The authors also propose default values for parameters of a heuristic algorithm and values regarding detection thresholds. This solution has been implemented in a well-known, open-source system and verified with a series of tests. Additionally, the authors investigated how updating the variables affects the intrusion detection process. The results confirmed the effectiveness of the proposed approach and heuristic algorithm. MDPI 2021-06-19 /pmc/articles/PMC8234388/ /pubmed/34205238 http://dx.doi.org/10.3390/e23060776 Text en © 2021 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Niemiec, Marcin
Kościej, Rafał
Gdowski, Bartłomiej
Multivariable Heuristic Approach to Intrusion Detection in Network Environments
title Multivariable Heuristic Approach to Intrusion Detection in Network Environments
title_full Multivariable Heuristic Approach to Intrusion Detection in Network Environments
title_fullStr Multivariable Heuristic Approach to Intrusion Detection in Network Environments
title_full_unstemmed Multivariable Heuristic Approach to Intrusion Detection in Network Environments
title_short Multivariable Heuristic Approach to Intrusion Detection in Network Environments
title_sort multivariable heuristic approach to intrusion detection in network environments
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8234388/
https://www.ncbi.nlm.nih.gov/pubmed/34205238
http://dx.doi.org/10.3390/e23060776
work_keys_str_mv AT niemiecmarcin multivariableheuristicapproachtointrusiondetectioninnetworkenvironments
AT kosciejrafał multivariableheuristicapproachtointrusiondetectioninnetworkenvironments
AT gdowskibartłomiej multivariableheuristicapproachtointrusiondetectioninnetworkenvironments