Internet Archive Scholar

Scalable Security Analytics Framework Using NoSQL Database

Rizwan ur Rahman, Deepak Singh Tomar
2017 International Journal of Database Theory and Application  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.0 MB)
https://web.archive.org/web/20180602203702/http://www.sersc.org/journals/IJDTA/vol10_no11/3.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2018; you can also visit the original URL. The file type is application/pdf.

Enterprises generate an estimated ten to hundred billion events every day. Large enterprises collect over 500GB logs per day. Traditional systems are not capable to handle this massive amount of data and this becoming classic problem of Big Data. Security Analytics deals with these issues by utilizing the techniques from Big Data analytics to dig out valuable information for averting cyber attacks. In this paper the scalable framework for security analytics is proposed using MongoDB NoSQL
more » ... se. An attack scenario is created to simulate the zero-day malware. Supervised and unsupervised learning techniques are applied for analytics on data collected from live application and experimental set-up. The outcome is 360 0 view of data by singling out an abnormal access behavior for given user. It is observed that False Positive rate has been reduced.
doi:10.14257/ijdta.2017.10.11.03 fatcat:kqyb77wei5cmljwy5fac3b74l4
Citation

Rizwan ur Rahman, Deepak Singh Tomar. "Scalable Security Analytics Framework Using NoSQL Database." International Journal of Database Theory and Application 10.11 (2017) 27-46