Library Open Repository
Applying Expert System Technology in a Distributed Monitoring System: An Efficient Response Mechanism for Unknown Threats
Cooke, HBM (2005) Applying Expert System Technology in a Distributed Monitoring System: An Efficient Response Mechanism for Unknown Threats. Honours thesis, University of Tasmania. (Unpublished)
Final_Thesis.pdf | Download (736kB)
Available under University of Tasmania Standard License.
Detecting unknown threats is a paradox; how do you detect a threat if it is not known to exist? The answer is that unknown threat detection is the process of making a previously unknown threat identifiable in the shortest possible time frame. This thesis examines the possibility of creating an unknown threat detection mechanism that security experts can use for developing a flexible protection system for networks. A system that allows the detection of unknown threats through distributed host based monitoring and the incorporation of dynamic and flexible logics with situational knowledge is described as well as the mechanisms used to develop such a system is illustrated. The system not only allows the detection of new threats but does so in a fast and efficient manner to increase the available time for responding to these threats.
|Keywords:||expert system, distributed monitoring, unknown threats, computer security|
|Publisher:||Honours thesis, University of Tasmania|
|Date Deposited:||04 Jan 2006|
|Last Modified:||18 Nov 2014 03:10|
|Item Statistics:||View statistics for this item|
Repository Staff Only (login required)
|Item Control Page|