DMASD4CA

Distributed Multi-way Analysis of Stream Data for Detection of Complex Attacks

 Coordinatore TECHNISCHE UNIVERSITAT BERLIN 

 Organization address address: STRASSE DES 17 JUNI 135
city: BERLIN
postcode: 10623

contact info
Titolo: Ms.
Nome: Ludwig
Cognome: Simone
Email: send email
Telefono: +49 30 31421371
Fax: +49 30 31421689

 Nazionalità Coordinatore Germany [DE]
 Totale costo 148˙048 €
 EC contributo 148˙048 €
 Programma FP7-PEOPLE
Specific programme "People" implementing the Seventh Framework Programme of the European Community for research, technological development and demonstration activities (2007 to 2013)
 Code Call FP7-PEOPLE-2007-4-2-IIF
 Funding Scheme MC-IIF
 Anno di inizio 2009
 Periodo (anno-mese-giorno) 2009-02-24   -   2010-06-23

 Partecipanti

# participant  country  role  EC contrib. [€] 
1    TECHNISCHE UNIVERSITAT BERLIN

 Organization address address: STRASSE DES 17 JUNI 135
city: BERLIN
postcode: 10623

contact info
Titolo: Ms.
Nome: Ludwig
Cognome: Simone
Email: send email
Telefono: +49 30 31421371
Fax: +49 30 31421689

DE (BERLIN) coordinator 0.00

Mappa

Leaflet | Map data © OpenStreetMap contributors, CC-BY-SA, Imagery © Mapbox

 Word cloud

Esplora la "nuvola delle parole (Word Cloud) per avere un'idea di massima del progetto.

data    attacks    separated    sources    paradigm    ids    detection    actions    attack    distributed    locations    responses    multiple    adversarial    analyze    detected    streams   

 Obiettivo del progetto (Objective)

'A 'complex attack' is a sequence of temporally and spatially separated actions each of which may be detected or prevented by various Intrusion Detection Systems (IDS); however as a whole they constitute a powerful attack that cannot be detected by IDS paradigm. Examples include 'insider' and 'stealth' attacks. The main reason for IDS paradigm to fall short of detecting and modeling complex attacks is that adversarial actions may not violate any IDS rules explicitly. Thus, new methods are required to efficiently recognize complex attacks within message streams coming from various sources such as IDS, sniffers and system logs. Such stream data may be generated by several physically separated data sources (with varying rates and volumes) that together they may produce one logical data set. Thus, it may be necessary to monitor and analyze (correlated) data flows from multiple locations in a distributed fashion to obtain more accurate statistical and structural information. The raw data carried in these streams offer many valuable information ranging from alerts for early responses to discovery of hidden groups in adversarial actions. However, processing and analysis of data streams to identify complex attacks remain as a challenge. This project develops (1) efficient distributed algorithms to sample, and analyze complex information from continuous low of data streams, (2) new models for detection of complex attacks based on such analysis in order to produce rapid responses o events such as emerging disasters, epidemic outbreaks, or terrorist attacks.'

Introduzione (Teaser)

A method has been developed for analysing complex data simultaneously from multiple locations. It has the potential to improve computer network security against malicious activity.

Altri progetti dello stesso programma (FP7-PEOPLE)

ATERIAN (2009)

A NORTH AFRICAN PERSPECTIVE ON MODERN HUMAN ORIGINS

Read More  

TAMBO (2008)

"Societies of South Peru in the Context of Climatic and Environmental Change, Late Pleistocene to Modern Age – Rio Tambo Projekt"

Read More  

CAMPY SECRETION (2008)

Comparative Proteomics and Function of Secreted Proteins of Campylobacter jejuni

Read More