Title |
Incidentų kompiuterių tinkluose identifikavimas, taikant anomalijų aptikimo metodus / |
Translation of Title |
Incident Identification of computer networks using anomaly detection methods. |
Authors |
Ivanovas, Povilas |
Full Text |
|
Pages |
58 |
Keywords [eng] |
OSSIM ; anomaly ; incident ; OSSEC ; NIDS |
Abstract [eng] |
“Incident Identification of computer networks using anomaly detection methods” – it is identification methods that provide information about anomalies and incidents in the administrated networks. These methods help to timely notice, identify, react to anomalies and incidents while it has not made more damage. The analytical part of the most commonly occurring incidents classification of computer networks and network anomaly detection methods are presented. When choosing a security information and event management system analysis of similar systems was made. The conclusion is that the choice of security information event management and storage system conforms to all requirements. The next part describes the selected security information event management and storage system project. After defining the actors (administrator, system) and their use cases there are distinguished functional and non-functional system requirements in accordance with the requirements system was realized. After the design of the system follows the realization and received results. In the summary conclusions of the work a presented. |
Dissertation Institution |
Kauno technologijos universitetas. |
Type |
Master thesis |
Language |
Lithuanian |
Publication date |
2017 |