Self-learning security system for computer networks

July 9, 2009

Cyber attacks on computer networks are becoming increasingly commonplace. To counter the threat, they are protected by so-called network intrusion detection systems. But these fail to identify some attacks, or do not spot them until it is too late. To improve matters, Damiano Bolzoni of the University of Twente (The Netherlands) has developed a system which paves the way for a new generation of network security. This forms the subject of his doctorate, awarded by the Faculty of Electrical Engineering, Mathematics and Computer Science on 25 June.

A network intrusion detection system (NIDS) is like a kind of virus scanner, but for an entire network rather than a single computer. There are two types. The first draws upon a database of all known attacks, such as those attempted by . It works by recognizing the ‘signatures’ of methods previously used. But this means that it will not at first spot a new and as yet unknown method.

The second kind of NIDS uses anomaly detection. In other words, it learns how the is normally used and if it spots a deviation from this standard pattern it will alert the system administrator so that the suspected attack can be investigated. In practice, however, this type is not widely used because no really good systems are yet available commercially.

Bolzoni has been trying to change that by developing a new anomaly detection NIDS, which he has named SilentDefense. His system is based upon self-learning algorithms, which make it far more accurate than existing systems of this kind. Moreover, the chance of ‘false positive’ alerts is about 1000 times lower than in the systems currently available.

The system is now being further developed by SecurityMatters, the company recently founded by Bolzoni and fellow researchers Emmanuele Zambon and Sandro Etalle. They expect to launch SilentDefense commercially in mid-2010.

In Bolzoni’s view, the ideal NIDS is not of one type or the other but combines the two. For that to be possible, however, a good system based upon anomaly detection first needs to become available.

Provided by University of Twente (news : web)


print this article email this article download pdf blog this article bookmark this article     Stumble it Digg this share on Facebook retweet share on Reddit add to delicious
Rate this story - not rated yet


July 9, 2009 all stories

Comments: 0

not rated yet
  • Stumble this up

  • Digg this

  • share this

  • hide

  • Related Stories




  • hide

  • Relevant PhysicsForums posts

  • 1st Year Indeterminate Beam Question
    created 2 hours ago
  • Question Regarding Radiant Floor Heating
    created 8 hours ago
  • Galactic Suite and space tourism
    created Nov 02, 2009
  • Heated Infrastructure in the U.S. -- Possible?
    created Nov 02, 2009
  • More from Physics Forums - General Engineering

Other News

Microsoft redesigns MSN, adds Twitter, Facebook

Technology / Internet

created 1hour ago | popularity not rated yet | comments 0

(AP) -- Microsoft Corp. is giving its MSN Web portal a long-overdue makeover and says it hopes the new site will funnel more people to Bing, the software maker's search engine.


airpod

Car That Runs on Compressed Air Questioned by Critics (w/ Video)

Technology / Energy

created 17 hours ago | popularity 4.2 / 5 (11) | comments 17

(PhysOrg.com) -- As electric cars begin breaking into the short-distance vehicle market, one French company thinks that it has an alternative to the electric vehicle: a car that runs on compressed air. Motor ...


Customs

'Fear detector' being developed

Technology / Hi Tech

created 21 hours ago | popularity 2.4 / 5 (5) | comments 9

(PhysOrg.com) -- British scientists are aiming to develop a device that can detect the smell of fear, and that could one day identify terrorists, drug smugglers, and other criminals.


Hooks hijacked? New research shows how to block stealthy malware attacks

Technology / Computer Sciences

created 21 hours ago | popularity 4.9 / 5 (11) | comments 3

The spread of malicious software, also known as malware or computer viruses, is a growing problem that can lead to crashed computer systems, stolen personal information, and billions of dollars in lost productivity every ...


Lasers put a shine on metals

Lasers put a shine on metals

Technology / Engineering

created 19 hours ago | popularity 4.7 / 5 (6) | comments 2

(PhysOrg.com) -- Polishing metal surfaces is a demanding but monotonous task, and it is difficult to find qualified young specialists. Polishing machines do not represent an adequate alternative because they ...




PhysOrg Account
advanced search
  • follow with twitter
  • follow on facebook
  • read with kindle
  • customize RSS
  • physorg mobile
  • newsletter