Library Open Repository

Applying Expert System Technology in a Distributed Monitoring System: An Efficient Response Mechanism for Unknown Threats

Downloads

Downloads per month over past year

Cooke, HBM (2005) Applying Expert System Technology in a Distributed Monitoring System: An Efficient Response Mechanism for Unknown Threats. Honours thesis, University of Tasmania. (Unpublished)

[img]
Preview
PDF
Final_Thesis.pdf | Download (736kB)
Available under University of Tasmania Standard License.

Abstract

Detecting unknown threats is a paradox; how do you detect a threat if it is not known to exist? The answer is that unknown threat detection is the process of making a previously unknown threat identifiable in the shortest possible time frame. This thesis examines the possibility of creating an unknown threat detection mechanism that security experts can use for developing a flexible protection system for networks. A system that allows the detection of unknown threats through distributed host based monitoring and the incorporation of dynamic and flexible logics with situational knowledge is described as well as the mechanisms used to develop such a system is illustrated. The system not only allows the detection of new threats but does so in a fast and efficient manner to increase the available time for responding to these threats.

Item Type: Other
Keywords: expert system, distributed monitoring, unknown threats, computer security
Publisher: Honours thesis, University of Tasmania
Date Deposited: 04 Jan 2006
Last Modified: 18 Nov 2014 03:10
URI: http://eprints.utas.edu.au/id/eprint/245
Item Statistics: View statistics for this item

Repository Staff Only (login required)

Item Control Page Item Control Page