用于具有高度机密数据源的大型组织的集成数据泄露监视工具

2012 4th Computer Science and Electronic Engineering Conference (CEEC) Pub Date : 2012-12-06 DOI:10.1109/CEEC.2012.6375395

N. Suresh, N. Malhotra, R. Kumar, B. Thanudas

{"title":"用于具有高度机密数据源的大型组织的集成数据泄露监视工具","authors":"N. Suresh, N. Malhotra, R. Kumar, B. Thanudas","doi":"10.1109/CEEC.2012.6375395","DOIUrl":null,"url":null,"abstract":"Data security in a highly confidential large network is of paramount importance. Confidential data networks belonging to secret agencies and government organizations are common targets for data exfiltration. This has become a growing concern in such networks. Present day intrusion detection and prevention systems and firewalls cannot possibly prevent an insider exfiltrating vital data for ulterior purposes. Hence developing an exfiltration detection tool that exclusively detects data exfiltration is of much importance. In this paper, we present an integrated monitoring tool that detects data exfiltration. This tool employs twofold approach in detecting exfiltration 1) Profiling traffic - in/out correlation 2) Estimating FTP Server access.","PeriodicalId":142286,"journal":{"name":"2012 4th Computer Science and Electronic Engineering Conference (CEEC)","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-12-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":"{\"title\":\"An integrated data exfiltration monitoring tool for a large organization with highly confidential data source\",\"authors\":\"N. Suresh, N. Malhotra, R. Kumar, B. Thanudas\",\"doi\":\"10.1109/CEEC.2012.6375395\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Data security in a highly confidential large network is of paramount importance. Confidential data networks belonging to secret agencies and government organizations are common targets for data exfiltration. This has become a growing concern in such networks. Present day intrusion detection and prevention systems and firewalls cannot possibly prevent an insider exfiltrating vital data for ulterior purposes. Hence developing an exfiltration detection tool that exclusively detects data exfiltration is of much importance. In this paper, we present an integrated monitoring tool that detects data exfiltration. This tool employs twofold approach in detecting exfiltration 1) Profiling traffic - in/out correlation 2) Estimating FTP Server access.\",\"PeriodicalId\":142286,\"journal\":{\"name\":\"2012 4th Computer Science and Electronic Engineering Conference (CEEC)\",\"volume\":\"2 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-12-06\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"8\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 4th Computer Science and Electronic Engineering Conference (CEEC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CEEC.2012.6375395\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 4th Computer Science and Electronic Engineering Conference (CEEC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CEEC.2012.6375395","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 8

摘要

在高度机密的大型网络中，数据安全至关重要。属于秘密机构和政府组织的机密数据网络是数据泄露的常见目标。这已经成为这类网络日益关注的问题。目前的入侵检测和防御系统和防火墙不可能阻止内部人员为别有用心而窃取重要数据。因此，开发一种专门检测数据泄漏的泄漏检测工具是非常重要的。在本文中，我们提出了一种检测数据泄露的集成监控工具。该工具采用双重方法检测泄漏1)分析流量-输入/输出相关性2)估计FTP服务器访问。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

An integrated data exfiltration monitoring tool for a large organization with highly confidential data source

Data security in a highly confidential large network is of paramount importance. Confidential data networks belonging to secret agencies and government organizations are common targets for data exfiltration. This has become a growing concern in such networks. Present day intrusion detection and prevention systems and firewalls cannot possibly prevent an insider exfiltrating vital data for ulterior purposes. Hence developing an exfiltration detection tool that exclusively detects data exfiltration is of much importance. In this paper, we present an integrated monitoring tool that detects data exfiltration. This tool employs twofold approach in detecting exfiltration 1) Profiling traffic - in/out correlation 2) Estimating FTP Server access.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2012 4th Computer Science and Electronic Engineering Conference (CEEC)

自引率

0.00%

发文量

期刊最新文献

The importance of social tie detection in socially-aware opportunistic routing On the control of generic abelian group codes Performance analysis of hybrid network for cloud datacenter Applying Gaussian mixture model on Discrete Cosine features for image segmentation and classification Energy efficient transmission power estimation for WLAN VoIP