Planned intervention: On Thursday 19/09 between 05:30-06:30 (UTC), Zenodo will be unavailable because of a scheduled upgrade in our storage cluster.
Published April 27, 2020 | Version v1
Journal article Open

Incidents Information Sharing Platform for Distributed Attack Detection

Description

Intrusion detection plays a critical role in cyber-security domain since malicious attacks cause irreparable damages to cyber-systems. In this work, we propose the I2SP prototype, which is a novel Information Sharing Platform, able to gather, pre-process, model, and distribute network-traffic information. Within the I2SP prototype we build several challenging deep feature learning models for network-traffic intrusion detection. The learnt representations will be utilized for classifying each new network measurement into its corresponding threat level. We evaluate our prototype’s performance by conducting case studies using cyber-security data extracted from the Malware Information Sharing Platform (MISP)-API. To the best of our knowledge, we are the first that combine the MISP-API in order to construct an information sharing mechanism that supports multiple novel deep feature learning architectures for intrusion detection. Experimental results justify that the proposed deep feature learning techniques are able to predict accurately MISP threat-levels.

Files

09079479.pdf

Files (2.3 MB)

Name Size Download all
md5:4b208f6802b9f4e28c258e25e694b19a
2.3 MB Preview Download

Additional details

Funding

PHOENIX – Electrical Power System’s Shield against complex incidents and extensive cyber and privacy attacks 832989
European Commission
DEFENDER – Defending the European Energy Infrastructures 740898
European Commission