A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning

•

2 j'aime•408 vues

Preecha Pangsuban, Prachyanun Nilsook and Panita Wannapiroon A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning. Acceptance Notification of Full Paper and the paper will be published in International Journal of Machine Learning and Computing. (EI (INSPEC, IET), Scopus) 2019 8th International Conference on Software and Computing Technologies (ICSCT 2019) Conference 5th to 7th April 2019 , Hong Kong.

Formation

1
Assoc.Prof. Panita Wannapiroon,
Ph.D.
Preecha Pangsuban
Ph.D. Candidate
Assoc.Prof. Prachyanun Nilsook,
Ph.D.

2
INTRODUCTION
ICT has become a daily routine.

4
INTRODUCTION (cont.)
AI and ML used for vulnerability detection and data processing

5
The attacker can use ML to support his attacks at the same time
INTRODUCTION (cont.)

6
The Direct effects such as, reduction in work efficiency,
add recovery times having damage cost.
INTRODUCTION (cont.)

7
Indirect effects includes loss of business and non-credible organizations
INTRODUCTION (cont.)

8
Information system should have a security risk assessment to prepare for threats,
analyze the risks involved and preventive measures
INTRODUCTION (cont.)

9
Risk assessment (RA) includes, risk identification, risk analysis, and risk
priority.
INTRODUCTION (cont.)

10
Risk assessment based on the
likelihood of the occurrence
and the severity of the impact
of attacks
INTRODUCTION (cont.)

11
CICIDS2017 dataset was used in this research for threat detection and vulnerability
INTRODUCTION (cont.)

12
RESULT (cont.)
CICIDS2017 dataset have a variety of ways to detect Denial of Service,
Password attack, Probing and vulnerability
No Group of Intrusion Type of Intrusion
1 Normal Benign
2 Denial of Service: Dos Botnet, DDoS, DoS GoldenEye, DoS Hulk, DoS
Slowhttp, DoS Slowloris
3 Password attacks FTP-Patator, SSH-Patator, Web-Attack-Brute-Force
4 Probing Port Scan
5 Vulnerability Heartbleed Attack, Infiltration, Web-Attack-Sql-
Injection, Web-Attack-XSS

13
INTRODUCTION
Example of CICIDS2017 dataset
INTRODUCTION (cont.)

14
INTRODUCTION (cont.)
• Using CICIDS2017 dataset to create predictive models by ML
for predicting the likelihood of attacks
• The impact is assessed by the severity of each type of attacks.
• Risk assessment is the result of the likelihood and impact that
has occurred as a risk matrix of information systems.

15
To study the concept of RA for information system with CICIDS 2017
dataset using ML.
1
2
To design architecture of RA for information system with CICIDS
2017 dataset using ML.
1
OBJECTIVES OF THE RESEARCH
2

16
To study information and related research about RA on information system
based on intrusion network with ML and analyzed data for concept design.
1
To develop the components of RA system from the concept.2
To design architecture of RA system from the concept.3
1
2
3
RESEARCH OPERATION

20
RESULT (cont.)
The risk matrix report form

21
CONCLUSIONS
The system architecture consist of three main sections; network data
capture, risk predictive analysis and Risk Assessment report.
It is designed to work in real time, the network data capture design
need a special Network Interface Card that high efficiency and speed
to be able to capture data into “pcap” form
The network data converted to CICIDS2017 dataset form and they
are predicted intrusion by ML and stored into the data file
Logstash and Elasticsearch works together for handling and searching
big log files to increase the number of servers

22
CONCLUSIONS (cont.)
ML to identify known threats and suspicious behavior, by using
faster time helps reduce some mistakes caused by false positive and
false negative.
ML can identify threats, which can be clearly divided according to
the type of intrusion and can also specify the time of the intrusion in
real time.
The system can monitor RA and warn the system administrator for
prevention of risk of information system and harm reduction.
It is a tool used at work by institutions.

CONTACT
24
E-mail :
preecha@yru.ac.th
Facebook :
www.facebook.com/ppbyru

Thank
YouPRESENTED BY : Preecha Pangsuban
A Real-time Risk Assessment for Information System
with CICIDS2017 dataset using Machine Learning
25

Contenu connexe

Tendances

Netflix is a famously data-driven company. Data is used to make informed decisions on everything from content acquisition to content delivery, and everything in-between. As with any data-driven company, it’s critical that data used by the business is accurate. Or, at worst, that the business has visibility into potential quality issues as soon as they arise. But even in the most mature data warehouses, data quality can be hard. How can we ensure high quality in a cloud-based, internet-scale, modern big data warehouse employing a variety of data engineering technologies? In this talk, Michelle Ufford will share how the Data Engineering & Analytics team at Netflix is doing exactly that. We’ll kick things off with a quick overview of Netflix’s analytics environment, then dig into the architecture of our current data quality solution. We’ll cover what worked, what didn’t work so well, and what we're working on next. We’ll conclude with some tips & lessons learned for ensuring high quality on big data. This talk was presented at DataWorks/Hadoop Summit 2017 on June 13, 2017.

Scaling Data Quality @ Netflix

Michelle Ufford

Data Engineering Basics

Catherine Kimani

Splunk-Presentation

PrasadThorat23

Cyber Threat Intelligence

mohamed nasri

Introduction to Data Engineering

Hadi Fadlallah

IBM Security QRadar

Virginia Fernandez

Big Data Security and Governance

DataWorks Summit/Hadoop Summit

This presentation about Apache Spark covers all the basics that a beginner needs to know to get started with Spark. It covers the history of Apache Spark, what is Spark, the difference between Hadoop and Spark. You will learn the different components in Spark, and how Spark works with the help of architecture. You will understand the different cluster managers on which Spark can run. Finally, you will see the various applications of Spark and a use case on Conviva. Now, let's get started with what is Apache Spark. Below topics are explained in this Spark presentation: 1. History of Spark 2. What is Spark 3. Hadoop vs Spark 4. Components of Apache Spark 5. Spark architecture 6. Applications of Spark 7. Spark usecase What is this Big Data Hadoop training course about? The Big Data Hadoop and Spark developer course have been designed to impart an in-depth knowledge of Big Data processing using Hadoop and Spark. The course is packed with real-life projects and case studies to be executed in the CloudLab. What are the course objectives? Simplilearn’s Apache Spark and Scala certification training are designed to: 1. Advance your expertise in the Big Data Hadoop Ecosystem 2. Help you master essential Apache and Spark skills, such as Spark Streaming, Spark SQL, machine learning programming, GraphX programming and Shell Scripting Spark 3. Help you land a Hadoop developer job requiring Apache Spark expertise by giving you a real-life industry project coupled with 30 demos What skills will you learn? By completing this Apache Spark and Scala course you will be able to: 1. Understand the limitations of MapReduce and the role of Spark in overcoming these limitations 2. Understand the fundamentals of the Scala programming language and its features 3. Explain and master the process of installing Spark as a standalone cluster 4. Develop expertise in using Resilient Distributed Datasets (RDD) for creating applications in Spark 5. Master Structured Query Language (SQL) using SparkSQL 6. Gain a thorough understanding of Spark streaming features 7. Master and describe the features of Spark ML programming and GraphX programming Who should take this Scala course? 1. Professionals aspiring for a career in the field of real-time big data analytics 2. Analytics professionals 3. Research professionals 4. IT developers and testers 5. Data scientists 6. BI and reporting professionals 7. Students who wish to gain a thorough understanding of Apache Spark Learn more at https://www.simplilearn.com/big-data-and-analytics/apache-spark-scala-certification-training

What Is Apache Spark? | Introduction To Apache Spark | Apache Spark Tutorial ...

Simplilearn

Threat Hunting Workshop

Splunk

Splunk Phantom SOAR Roundtable

Splunk

This talk presents a continuous application example that relies on Spark FAIR scheduler as the conductor to orchestrate the entire “lambda architecture” in a single spark context. As a typical time series event stream analysis might involved, there are four key components: – an ETL step to store the raw data – a series of real time aggregation on the joint of streaming input and historical data to power a model – model execution – ad-hoc query for human inspection. The key benefits of this setup compared to a typical design that has a bunch of Spark application running individually are 1. Decouple streaming batches process from triggering model calculation, model calculations are triggered at a different pace from the stream processing. 2. Model is always processing the latest data, using pure rdd APIs. 3. Launch various operations in different threads on the driver node, ensuring them got submitted to the appropriate fair scheduler pool. Let FAIR scheduler to do the resource distribution. 4. Share code and time by sharing the actual data transformation (like the rdds in the intermediate steps). 5. Support adhoc queries on intermediate state without a dedicated serving layer or output protocol. 6. Only one app to monitor and tune.

Continuous Application with FAIR Scheduler with Robert Xue

Databricks

Meetup: Streaming Data Pipeline Development In this interactive session, Tim will lead participants through how to best build streaming data pipelines. He will cover how to build applications from some common use cases and highlight tips, tricks, best practices and patterns. He will show how to build the easy way and then dive deep into the underlying open source technologies including Apache NiFi, Apache Flink, Apache Kafka and Apache Iceberg. If you wish to follow along, please download open source projects beforehand. You can also download this helpful streaming platform: https://docs.cloudera.com/csp-ce/latest/installation/topics/csp-ce-installing-ce.html All source code and slides will be shared for those interested in building their own FLaNK Apps. https://www.flankstack.dev/ You can join the meeting virtually here: https://cloudera.zoom.us/j/91603330726 Speaker - Tim Spann Tim Spann is a Principal Developer Advocate in Data In Motion for Cloudera. He works with Apache NiFi, Apache Pulsar, Apache Kafka, Apache Flink, Flink SQL, Apache Pinot, Trino, Apache Iceberg, DeltaLake, Apache Spark, Big Data, IoT, Cloud, AI/DL, machine learning, and deep learning. Tim has over ten years of experience with the IoT, big data, distributed computing, messaging, streaming technologies, and Java programming. Previously, he was a Developer Advocate at StreamNative, Principal DataFlow Field Engineer at Cloudera, a Senior Solutions Engineer at Hortonworks, a Senior Solutions Architect at AirisData, a Senior Field Engineer at Pivotal and a Team Leader at HPE. He blogs for DZone, where he is the Big Data Zone leader, and runs a popular meetup in Princeton & NYC on Big Data, Cloud, IoT, deep learning, streaming, NiFi, the blockchain, and Spark. Tim is a frequent speaker at conferences such as ApacheCon, DeveloperWeek, Pulsar Summit and many more. He holds a BS and MS in computer science.

Meetup: Streaming Data Pipeline Development

Timothy Spann

The last year has put a new lens on what speed to insights actually mean - day-old data became useless, and only in-the-moment-insights became relevant, pushing data and analytics teams to their breaking point. The results, everyone has fast forwarded in their transformation and modernization plans, and it's also made us look differently at dashboards and the type of information that we're getting the business. Join this live event and hear about the data teams ditching their dashboards to embrace modern cloud analytics.

Death of the Dashboard

DATAVERSITY

Osint presentation nov 2019

Priyanka Aash

A closer look at the MySQL and PostgreSQL compatible relational database built for the cloud that combines the performance and availability of high-end commercial databases with the simplicity and cost-effectiveness of open source databases. We’ll explore how Aurora uses the AWS cloud to provide high reliability, high durability, and high throughput. Speakers: Steve Abraham - Principal Database Specialist Solutions Architect, AWS Peter Dachnowicz - Sr. Technical Account Manager, AWS

Amazon Aurora

Amazon Web Services

Oracle RAC - New Generation

Anil Nair

Data Lake or Data Swamp? By now, we’ve likely all heard the comparison. Data Lake architectures have the opportunity to provide the ability to integrate vast amounts of disparate data across the organization for strategic business analytic value. But without a proper architecture and metadata management strategy in place, a Data Lake can quickly devolve into a swamp of information that is difficult to understand. This webinar will offer practical strategies to architect and manage your Data Lake in a way that optimizes its success.

Data Lake Architecture – Modern Strategies & Approaches

DATAVERSITY

Introducing Databricks Delta

Databricks

Most organizations don't have the resources to staff a 24x7 security operations center (SOC). This results in events that aren't monitored around the clock, major delays in detecting and responding to incidents, and the inability for the team to proactively hunt for threats. It's a dangerous situation. But there is a solution. By using the Threat Lifecycle Management framework to combine people, process, and technology to automate manual tasks, your team can rapidly detect and respond to threats—without adding resources. Read on to learn 7 steps to building your SOC, even when your resources are limited.

7 Steps to Build a SOC with Limited Resources

LogRhythm

Hive, Presto, and Spark on TPC-DS benchmark

Dongwon Kim

Tendances (20)

Scaling Data Quality @ Netflix

Data Engineering Basics

Splunk-Presentation

Cyber Threat Intelligence

Introduction to Data Engineering

IBM Security QRadar

Big Data Security and Governance

What Is Apache Spark? | Introduction To Apache Spark | Apache Spark Tutorial ...

Threat Hunting Workshop

Splunk Phantom SOAR Roundtable

Continuous Application with FAIR Scheduler with Robert Xue

Meetup: Streaming Data Pipeline Development

Death of the Dashboard

Osint presentation nov 2019

Amazon Aurora

Oracle RAC - New Generation

Data Lake Architecture – Modern Strategies & Approaches

Introducing Databricks Delta

7 Steps to Build a SOC with Limited Resources

Hive, Presto, and Spark on TPC-DS benchmark

Similaire à A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning

We explore the potential and practical challenges in the use of artificial intelligence (AI) in cyber risk analytics, for improving organisational resilience and understanding cyber risk. The research is focused on identifying the role of AI in connected devices such as Internet of Things (IoT) devices. Through literature review, we identify wide ranging and creative methodologies for cyber analytics and explore the risks of deliberately influencing or disrupting behaviours to socio- technical systems. This resulted in the modelling of the connections and interdependencies between a system’s edge components to both external and internal services and systems. We focus on proposals for models, infrastructures and frameworks of IoT systems found in both business reports and technical papers. We analyse this juxtaposition of related systems and technologies, in academic and industry papers published in the past 10 years. Then, we report the results of a qualitative empirical study that correlates the academic literature with key technological advances in connected devices. The work is based on grouping future and present techniques and presenting the results through a new conceptual framework. With the application of social science’s grounded theory, the framework details a new process for a prototype of AI-enabled dynamic cyber risk analytics at the edge.

Artificial intelligence and machine learning in dynamic cyber risk analytics ...

Petar Radanliev

Abstract—With the heightening reliance on Information Technology in recent times, it has becoming more relevant to find measures to secure every online device, data and information. A Network Intrusion Detection System (NIDS) is one of the security options to consider to help protect such devices, data and information. However, IDS needs to be up to date to mitigate current threats to secure systems. A critical issue in the development of the right IDS is the scarcity of current data sets used for training these IDS and the impact on system performance. This paper presents an On-demand Network Data Set Creation Application (ONDaSCA) a Graphical User Interface software capable of generating labelled network intrusion data set. ONDaSCA grants IDS users or researchers the option to choose a raw data set and processed this data set as output, real-time packet capture and offline upload of existing PCAP file and two (2) difference packet capturing methods (Tshark and Dumpcap). ONDaSCA is highly customisable and an IDS user or researcher can leverage its capabilities to suit their needs. The abilities of this software are compared with other similar products that generate data set for use by IDS model. International Journal of Computer Science and Information Security,IJCSIS ISSN 1947-5500, Pittsburgh, PA, USA Email: ijcsiseditor@gmail.com http://sites.google.com/site/ijcsis/ https://google.academia.edu/JournalofComputerScience https://www.linkedin.com/in/ijcsis-research-publications-8b916516/ http://www.researcherid.com/rid/E-1319-2016

ONDaSCA: On-demand Network Data Set Creation Application for Intrusion Detect...

IJCSIS Research Publications

With the emergence of smart devices and the Internet of Things (IoT), millions of users connected to the network produce massive network traffic datasets. These vast datasets of network traffic, Big Data are challenging to store, deal with and analyse using a single computer. In this paper we developed parallel implementation using a High Performance Computer (HPC) for the Non-Negative Matrix Factorization technique as an engine for an Intrusion Detection System (HPC-NMF-IDS). The large IoT traffic datasets of order of millions samples are distributed evenly on all the computing cores for both storage and speedup purpose. The distribution of computing tasks involved in the Matrix Factorization takes into account the reduction of the communication cost between the computing cores. The experiments we conducted on the proposed HPC-IDS-NMF give better results than the traditional ML-based intrusion detection systems. We could train the HPC model with datasets of one million samples in only 31 seconds instead of the 40 minutes using one processor), that is a speed up of 87 times. Moreover, we have got an excellent detection accuracy rate of 98% for KDD dataset.

High Performance NMF Based Intrusion Detection System for Big Data IOT Traffic

IJCNCJournal

High Performance NMF based Intrusion Detection System for Big Data IoT Traffic

IJCNCJournal

Implementation of Secured Network Based Intrusion Detection System Using SVM ...

IRJET Journal

Computers are crucial instruments providing a competitive edge to organizations that have adopted them. Their pervasive presence has presented a novel challenge to information security, specifically threats emanating from privileged employees. Various solutions have been tried to address the vice, but no exhaustive solution has been found. Due to their elusive nature, proactive strategies have been proposed of which detection using Machine Learning models has been favoured. The choice of algorithm, datasets and metrics are cornerstones of model performance and hence, need to be addressed. Although multiple studies on ML for insider threat detection have been done, none has provided a comprehensive analysis of algorithms, datasets and metrics for development of Insider Threat Detection models. This study conducts a comprehensive systematic literature review using reputable databases to answer the research questions posed. Search strings, inclusion and exclusion criteria were set for eligibility of articles published in the last decade.

A SYSTEMATIC REVIEW ON MACHINE LEARNING INSIDER THREAT DETECTION MODELS, DATA...

IJNSA Journal

Feature extraction and feature selection are the first tasks in pre-processing of input logs in order to detect cyber security threats and attacks while utilizing machine learning. When it comes to the analysis of heterogeneous data derived from different sources, these tasks are found to be time-consuming and difficult to be managed efficiently. In this paper, we present an approach for handling feature extraction and feature selection for security analytics of heterogeneous data derived from different network sensors. The approach is implemented in Apache Spark, using its python API, named pyspark.

FEATURE EXTRACTION AND FEATURE SELECTION: REDUCING DATA COMPLEXITY WITH APACH...

IJNSA Journal

Logging the events occurring on the network has become very essential and thus playing a major role in monitoring the events in order to keep check over them so that they doesn’t harm any resources of the system or the system itself. The analysis of network logs are becoming the beneficial security research oriented field which will be desired in the computer era. Organizations are reluctant to expose their logs due to risk of attackers stealing the sensitive information from their respective logs. In this paper we are defining architecture and the security measures that can be applied for a particular network log.

Applicability of Network Logs for Securing Computer Systems

IDES Editor

The increasing use of smart devices results in a huge amount of data, which raises concerns about personal data, including health data and financial data. This data circulates on the network and can encounter network traffic at any time. This traffic can either be normal traffic or an intrusion created by hackers with the aim of injecting abnormal traffic into the network. Firewalls and traditional intrusion detection systems detect attacks based on signature patterns. However, this is not sufficient to detect advanced or unknown attacks. To detect different types of unknown attacks, the use of intelligent techniques is essential. In this paper, we analyse some machine learning techniques proposed in recent years. In this study, several classifications were made to detect anomalous behaviour in network traffic. The models were built and evaluated based on the Canadian Institute for Cybersecurity-intrusion detection systems dataset released in 2017 (CIC-IDS-2017), which includes both current and historical attacks. The experiments were conducted using decision tree, random forest, logistic regression, gaussian naïve bayes, adaptive boosting, and their ensemble approach. The models were evaluated using various evaluation metrics such as accuracy, precision, recall, F1-score, false positive rate, receiver operating characteristic curve, and calibration curve.

Machine learning-based intrusion detection system for detecting web attacks

IAESIJAI

Due to the increasing use of networks at present, Internet systems have raised many security problems, and statistics indicate that the rate of attacks or intrusions has increased excessively annually, and in the event of any malicious attack on network vulnerabilities or information systems, it may lead to serious disasters, violating policies on network security, i.e., “confidentiality, integrity, and availability” (CIA). Therefore, many detection systems, such as the intrusion detection system, appeared. In this paper, we built a system that detects network attacks using the latest machine learning algorithms and a convolutional neural network based on a dataset of the CSE-CIC-IDS2018. It is a recent dataset that contains a set of common and recent attacks. The detection rate is 99.7%, distinguishing between aggressive attacks and natural assertiveness.

Detecting network attacks model based on a convolutional neural network

IJECEIAES

Outstanding to the promotion of the Internet and local networks, interruption occasions to computer systems are emerging. Intrusion detection systems are becoming progressively vital in retaining appropriate network safety. IDS is a software or hardware device that deals with attacks by gathering information from a numerous system and network sources, then evaluating signs of security complexities. Enterprise networked systems are unsurprisingly unprotected to the growing threats posed by hackers as well as malicious users inside to a network. IDS technology is one of the significant tools used now-a-days, to counter such threat. In this research we have proposed framework by using advance feature selection and dimensionality reduction technique we can reduce IDS data then applying Fuzzy ARTMAP classifier we can find intrusions so that we get accurate results within less time. Feature selection, as an active research area in decreasing dimensionality, eliminating unrelated data, developing learning correctness, and improving result unambiguousness.

Intrusion detection system via fuzzy

IJDKP

With the introduction of high-speed internet access, the demand for security and dependable networks has grown. In recent years, network attacks have gotten more complex and intense, making security a vital component of organizational information systems. Network intrusion detection systems (NIDS) have become an essential detection technology to protect data integrity and system availability against such attacks. NIDS is one of the most well-known areas of machine learning software in the security field, with machine learning algorithms constantly being developed to improve performance. This research focuses on detecting abnormalities in societal infiltration using the hyperparameters optimization XGBoost (HO-XGB) algorithm with the Communications Security Establishment-The Canadian Institute for Cybersecurity-Intrusion Detection System2018 (CSE-CICIDS2018) dataset to get the best potential results. When compared to typical machine learning methods published in the literature, HO-XGB outperforms them. The study shows that XGBoost outperforms other detection algorithms. We refined the HO-XGB model's hyperparameters, which included learning_rate, subsample, max_leaves, max_depth, gamma, colsample_bytree, min_child_weight, n_estimators, max_depth, and reg_alpha. The experimental findings reveal that HO-XGB1 outperforms multiple parameter settings for intrusion detection, effectively optimizing XGBoost's hyperparameters.

Hyperparameters optimization XGBoost for network intrusion detection using CS...

IAESIJAI

There are essential security considerations in the systems used by semiconductor companies like TI. Along with other semiconductor companies, TI has recognized that IT security is highly crucial during web application developers' system development life cycle (SDLC). The challenges faced by TI web developers were consolidated via questionnaires starting with how risk management and secure coding can be reinforced in SDLC; and how to achieve IT Security, PM and SDLC initiatives by developing a prototype which was evaluated considering the aforementioned goals. This study aimed to practice NIST strategies by integrating risk management checkpoints in the SDLC; enforce secure coding using static code analysis tool by developing a prototype application mapped with IT Security goals, project management and SDLC initiatives and evaluation of the impact of the proposed solution. This paper discussed how SecureTI was able to satisfy IT Security requirements in the SDLC and PM phases.

SECURETI: ADVANCED SDLC AND PROJECT MANAGEMENT TOOL FOR TI(PHILIPPINES)

ijcsit

SECURETI: Advanced SDLC and Project Management Tool for TI (Philippines)

AIRCC Publishing Corporation

In 2006, Cyber Physical Systems (CPS), the new word was invented in the United States [1]. The combination of devices like sensors with embedded systems is quickly receiving its place in cyber world. These devices jointly with the information filed are becoming the main focal point, called as Cyber Physical Systems. This word was found keeping in mind the escaling significance of relations among the mutually related computing systems with the physical world [2]. The author of this paper gives an overview of CPS architecture, its functions and its security threat. Citation: Navin Dhinnesh ADC, Mepco Schlenk Engineering College. "Cyber Physical System." Global Research and Development Journal For Engineering 34 2018: 12 - 14.

Cyber Physical System

GRD Journals

IT assets connected on internetwill encounter alien protocols and few parameters of protocol process are exposed as vulnerabilities. Intrusion Detection Systems (IDS) are installed to alerton suspicious traffic or activity. IDS issuesfalse positives alerts, if any behavior construe for partial attack pattern or the IDS lacks environment knowledge. Continuous monitoring of alerts to evolve whether, an alert is false positive or not is a major concern. In this paper we present design of an external module to IDS,to identify false positive alertsbased on anomaly based adaptive learning model. The novel feature of this design is that the system updates behavior profile of assets and environment with adaptive learning process.A mixture model is used for behavior modeling from reference data. The design of the detection and learning process are based on normal behavior and of environment. The anomaly alert identification algorithm isbuiltonSparse Markov Transducers (SMT) based probability.The total process is presented using real-time data. The Experimental results are validated and presentedwith reference to lab environment.

A BAYESIAN CLASSIFICATION ON ASSET VULNERABILITY FOR REAL TIME REDUCTION OF F...

IJNSA Journal

Cyber Threat Intelligence (CTI) is gaining importance due to the rise in cyber attacks and crimes. It aims to increase administrators understanding of events and threats by gathering intelligence about criminal operations. However, there is a lack of literature on how AI algorithms can improve CTI automation. This research aims to understand CTI's importance and automate the CTI process, prioritizing important threats and providing recommendations for mitigation. The study reviews literature on AI algorithms with CTI to identify the best models and algorithms for improving automation. It also helps organizations understand and analyze data to reveal trends and patterns, providing in-depth understanding of threats. This research is suitable for entities with large datasets of intelligent information and sensitive data types.

Empowering Cyber Threat Intelligence with AI

IJCI JOURNAL

Privacy preserving data mining is an important issue nowadays for data mining. Since various organizations and people are generating sensitive data or information these days. They don’t want to share their sensitive data however that data can be useful for data mining purpose. So, due to privacy preserving mining that data can be mined usefully without harming the privacy of that data. Privacy can be preserved by applying encryption on database which is to be mined because now the data is secure due to encryption. Code profiling is a field in software engineering where we can apply data mining to discover some knowledge so that it will be useful in future development of software. In this work we have applied privacy preserving mining in code profiling data such as software metrics of various codes. Results of data mining on actual and encrypted data are compared for accuracy. We have also analyzed the results of privacy preserving mining in code profiling data and found interesting results.

Privacy Preserving Mining in Code Profiling Data

Dr. Amarjeet Singh

IRJET- Phishdect & Mitigator: SDN based Phishing Attack Detection

IRJET Journal

The main purpose of this paper is to explore and investigate the role of deep reinforcement learning (DRL) in optimizing the post-alert incident response process in security incident and event management (SIEM) systems. Although machine learning is used at multiple levels of SIEM systems, the last mile decision process is often ignored. Few papers reported efforts regarding the use of DRL to improve the post-alert decision and incident response processes. All the reported efforts applied only shallow (traditional) machine learning approaches to solve the problem. This paper explores the possibility of solving the problem using DRL approaches. The main attraction of DRL models is their ability to make accurate decisions based on live streams of data without the need for prior training, and they proved to be very successful in other fields of applications. Using standard datasets, a number of experiments have been conducted using different DRL configurations The results showed that DRL models can provide highly accurate decisions without the need for prior training.

Optimizing cybersecurity incident response decisions using deep reinforcemen...

IJECEIAES

Similaire à A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning (20)

Artificial intelligence and machine learning in dynamic cyber risk analytics ...

ONDaSCA: On-demand Network Data Set Creation Application for Intrusion Detect...

High Performance NMF Based Intrusion Detection System for Big Data IOT Traffic

High Performance NMF based Intrusion Detection System for Big Data IoT Traffic

Implementation of Secured Network Based Intrusion Detection System Using SVM ...

A SYSTEMATIC REVIEW ON MACHINE LEARNING INSIDER THREAT DETECTION MODELS, DATA...

FEATURE EXTRACTION AND FEATURE SELECTION: REDUCING DATA COMPLEXITY WITH APACH...

Applicability of Network Logs for Securing Computer Systems

Machine learning-based intrusion detection system for detecting web attacks

Detecting network attacks model based on a convolutional neural network

Intrusion detection system via fuzzy

Hyperparameters optimization XGBoost for network intrusion detection using CS...

SECURETI: ADVANCED SDLC AND PROJECT MANAGEMENT TOOL FOR TI(PHILIPPINES)

SECURETI: Advanced SDLC and Project Management Tool for TI (Philippines)

Cyber Physical System

A BAYESIAN CLASSIFICATION ON ASSET VULNERABILITY FOR REAL TIME REDUCTION OF F...

Empowering Cyber Threat Intelligence with AI

Privacy Preserving Mining in Code Profiling Data

IRJET- Phishdect & Mitigator: SDN based Phishing Attack Detection

Optimizing cybersecurity incident response decisions using deep reinforcemen...

Plus de Prachyanun Nilsook

Generative Artificial Intelligence for Imagineering in education

Prachyanun Nilsook

ชุดที่ 2 โครงการบรรยายวิชาการ เรื่อง เทคนิคการเขียนบทความวิจัยเพื่อตีพิมพ์ในฐานข้อมูลที่ยอมรับในระดับนานาชาติ บัณฑิตวิทยาลัย มหาวิทยาลัยเทคโนโลยีพระจอมเกล้าพระนครเหนือ วันพฤหัสบดีที่ 22 พฤศจิกายน พ.ศ.2566 กลุ่มที่ 3 มนุษยศาสตร์ สังคมศาสตร์ และการศึกษา

3.เทคนิคการเขียนบทความระดับนานาชาติ_2566_12.pdf

Prachyanun Nilsook

โครงการบรรยายวิชาการ เรื่อง เทคนิคการเขียนบทความวิจัยเพื่อตีพิมพ์ในฐานข้อมูลที่ยอมรับในระดับนานาชาติ บัณฑิตวิทยาลัย มหาวิทยาลัยเทคโนโลยีพระจอมเกล้าพระนครเหนือ วันพฤหัสบดีที่ 22 พฤศจิกายน พ.ศ.2566 กลุ่มที่ 3 มนุษยศาสตร์ สังคมศาสตร์ และการศึกษา

เทคนิคการเขียนบทความระดับนานาชาติ_2566_10.pdf

Prachyanun Nilsook

บทบาทของวิชาชีพเทคโนโลยีและสื่อสารการศึกษากับการเปลี่ยนผ่านสู่สังคมที่ชาญฉลาด การประชุมวิชาการโสตฯ - เทคโนสัมพันธ์แห่งประเทศไทย ครั้งที่ 35 ศ.ดร.ปรัชญนันท์ นิลสุข นายกสมาคมเทคโนโลยีและสื่อสารการศึกษา วันที่ 5 พฤศจิกายน 2565 วันที่ 4 – 6 พฤศจิกายน 2565 ณ คณะศึกษาศาสตร์ มหาวิทยาลัยขอนแก่น

บทบาทของวิชาชีพเทคโนโลยีและสื่อสารการศึกษา

Prachyanun Nilsook

การประชุมเชิงปฏิบัติการจัดทำวิจัยทางการศึกษาและนวัตกรรมเกี่ยวกับระบบธนาคารสะสมหน่วยกิต สำนักงานศึกษาธิการภาค 5 สำนักปลัดกระทรวงศึกษาธิการ วันศุกร์ที่ 23 กันยายน 2565 ณ โรงแรมทวินโลตัส อำเภอเมืองนครศรีธรรมราช จังหวัดนครศรีธรรมราช

ระบบธนาคารสะสมหน่วยกิต

Prachyanun Nilsook

การประชุมวิชาการระดับชาติด้านนวัตกรรมการเรียนรู้ทางวิทยาศาสตร์และเทคโนโลยี ครั้งที่ 3 วันที่ 22 กรกฎาคม 2565 เวลา 09.30-12.00 น. จัดโดย คณะครุศาสตร์อุตสาหกรรมและเทคโนโลยี มหาวิทยาลัยเทคโนโลยีพระจอมเกล้าธนบุรี การพัฒนารูปแบบการเรียนการสอนแนวใหม่ในยุคดิจิทัลเพื่อก้าวสู่วิถี Next Normal การประชุมวิชาการระดับชาติด้านนวัตกรรมการเรียนรู้ทางวิทยาศาสตร์และเทคโนโลยี ครั้งที่ 3 คณะครุศาสตร์อุตสาหกรรมและเทคโนโลยี มหาวิทยาลัยเทคโนโลยีพระจอมเกล้าธนบุรี วันที่ 22 กรกฎาคม 2565

Instructional Design for Next Normal Education

Prachyanun Nilsook

โครงการประชุมวิชาการนำเสนอผลงานวิจัยและงานสร้างสรรค์ระตับชาติ ๒๕๖๕ เรื่อง "การวิจัยและงานสร้างสรรค์รับใช้ชุมชน สร้างสังคมฐานความรู้" วันศุกร์ที่ ๒๖ สิงหาคม พ.ศ. ๒๕๖๕ ณ มหาวิทยาลัยราชภัฎฏธนบุรี การปาฐกถา เรื่อง การพัฒนาเชิงพื้นที่ภายใต้แนวคิดเศรษฐกิจ BCG

BCG Model

Prachyanun Nilsook

คู่มือการจัดทําแผนการจัดการเรียนรู้มุ่งสมรรถนะ.pdf

Prachyanun Nilsook

แนวทางการจัดการเรียนรู้แบบโครงงานเป็นฐาน-สอศ.2559.pdf

Prachyanun Nilsook

เทคนิคการเขียนโครงการวิจัยและนวัตกรรมให้ได้ทุนวิจัยจากสำนักงาน วช. บัณฑิตวิทยาลัยขอเชิญเข้าร่วมโครงการแลกเปลี่ยนเรียนรู้ เรื่อง “เทคนิคการเขียนโครงการวิจัยและนวัตกรรมให้ได้ทุนวิจัยจากสำนักงาน วช.” โดยนักศึกษาระดับบัณฑิตศึกษาที่ได้รับทุนจากสำนักงาน วช. พร้อมอาจารย์ที่ปรึกษาให้เกียรติ เป็นวิทยากรแลกเปลี่ยนเรียนรู้/ประสบการณ์ แนะนำเทคนิคการเขียนโครงการวิจัยอย่างไรเพื่อให้ได้ทุนวิจัยฯ พร้อมตอบข้อซักถาม ในวันศุกร์ที่ 29 เมษายน 2565 เริ่มเวลา 09.00 – 12.00 น.

เทคนิคการเขียนโครงการวิจัยและนวัตกรรมให้ได้ทุนวิจัยจากสำนักงาน วช.

Prachyanun Nilsook

เทคนิคการเขียนเอกสารประกอบการสอน

Prachyanun Nilsook

โครงการอบรมเชิงปฏิบัติการ การเขียนเอกสารประกอบการสอน เอกสารคำสอน เพื่อเตรียมความพร้อมรับการประเมินการสอน วันที่ 22 เมษายน 2565 มหาวิทยาลัยราชภัฏจันทรเกษม

การเขียนเอกสารประกอบการสอน

Prachyanun Nilsook

การอบรมเชิงปฏิบัติการฐานสมรรถนะแบบอิงประสบการณ์ด้วยชุมชนนักปฏิบัติภควันตภาพ เพื่อการเปลี่ยนผ่านของศึกษานิเทศดิจิทัลตามโครงการพัฒนาสมรรถนะศึกษานิเทศย์ สมรรถนะศึกษานิเทศก์ดิจิทัล (DIGITAL SUPERVISOR COMPETENCY) หัวข้อ ผู้นำการเปลี่ยนผ่านดิจิทัล ศึกษานิเทศก์ สำนักงานเขตพื้นที่การศึกษาปทุมธานี วันที่ 1 มีนาคม 2565

Digital leadership 2022

Prachyanun Nilsook

โครงการจัดการความรู้ (Knowledge Management : KM) คณะวิทยาการคอมพิวเตอร์ "การตีพิมพ์บทความวิจัยในวารสารระดับนานาชาติด้านคอมพิวเตอร์" กระบวนการร่างบทความวิจัยในวารสารระดับนานาชาติด้านคอมพิวเตอร์ สถานที่แปลภาษาและการเลือกวารสารระดับนานาชาติด้านคอมพิวเตอร์ ณ ห้องประชุมเสรี หร่ายเจริญ ชั้น 6 อาคารศูนย์ภาษาและคอมพิวเตอร์ คณะวิทยาการคอมพิวเตอร์ มหาวิทยาลัยราชภัฏอุบลราชธานี วันศุกร์ที่ 21 มกราคม 2565

กระบวนการร่างบทความวิจัยในวารสารระดับนานาชาติด้านคอมพิวเตอร์

Prachyanun Nilsook

สไลด์บรรยาย นวัตกรรมทางออนไลน์เพื่อการศึกษาที่ดีกว่าในยุคปกติใหม่ การประชุมวิชาการระดับชาติศึกษาศาสตร์วิจัย มหาวิทยาลัยนเรศวร "การวิจัยและนวัตกรรมพลิกผันเพื่อการเปลี่ยนแปลงการศึกษาที่ดีกว่าบนฐานวิถีชีวิตใหม่" The 9th National Conference on Educational Research, Naresuan University ณ คณะศึกษาศาสตร์ มหาวิทยาลัยนเรศวร วันพฤหัสบดีที่ 20 มกราคม 2565

Online education innovation_new_normal_2022

Prachyanun Nilsook

โครงการเตรียมความพร้อมและพัฒนาอย่างเข้มสำหรับครูผู้ช่วย (รูปแบบออนไลน์) สำนักพัฒนาสมรรถนะครูและบุคลากรอาชีวศึกษา วันที่ 20-24 กันยายน 2564 หมวดที่ 2 การจัดการเรียนการสอน ๒.๑ การวิเคราะห์หลักสูตร มาตรฐานการเรียนรู้ และตัวชี้วัดผลการเรียนรู้ ๒.๒ การออกแบบการจัดการเรียนรู้ที่เน้นผู้เรียนเป็นสำคัญ และส่งเสริมกระบวนการคิด ๒.๓ การจัดกิจกรรมการเรียนรู้ที่เน้นผู้เรียนเป็นสำคัญ และส่งเสริมกระบวนการคิด ๒.๔ การเลือก หรือสร้าง หรือพัฒนาสื่อ เทคโนโลยี และแหล่งเรียนรู้ ๒.๕ การวัดและประเมินผลการเรียนรู้

การจัดการเรียนการสอนอาชีวศึกษา2

Prachyanun Nilsook

การจัดการเรียนการสอนอาชีวศึกษา1

Prachyanun Nilsook

การทำผลงานทางวิชาการ เกณฑ์และการขอกำหนดตำแหน่งทางวิชาการ

Prachyanun Nilsook

Digital Transformation สำคัญต่อเทคโนโลยีการศึกษาอย่างไร คณะครุศาสตร์อุตสาหกรรม มหาวิทยาลัยเทคโนโลยีราชมงคลธัญบุรี ดำเนินการโดย สมาคมเทคโนโลยีและสื่อสารการศึกษา วันที่ 26 สิงหาคม 2564

Digital transformation

Prachyanun Nilsook

โครงการสัมมนาเรื่อง แนวทางการตีพิมพ์บทความวิจัยระดับนานาชาติ ภาควิชาเทคโนโลยีและสื่อสารการศึกษา คณะศึกษาศาสตร์ มหาวิทยาลัยมหาสารคาม วันเสาร์ที่ 7 สิงหาคม พ.ศ. 2564

แนวทางการตีพิมพ์บทความวิจัยระดับนานาชาติ

Prachyanun Nilsook

Plus de Prachyanun Nilsook (20)

Generative Artificial Intelligence for Imagineering in education

3.เทคนิคการเขียนบทความระดับนานาชาติ_2566_12.pdf

เทคนิคการเขียนบทความระดับนานาชาติ_2566_10.pdf

บทบาทของวิชาชีพเทคโนโลยีและสื่อสารการศึกษา

ระบบธนาคารสะสมหน่วยกิต

Instructional Design for Next Normal Education

BCG Model

คู่มือการจัดทําแผนการจัดการเรียนรู้มุ่งสมรรถนะ.pdf

แนวทางการจัดการเรียนรู้แบบโครงงานเป็นฐาน-สอศ.2559.pdf

เทคนิคการเขียนโครงการวิจัยและนวัตกรรมให้ได้ทุนวิจัยจากสำนักงาน วช.

เทคนิคการเขียนเอกสารประกอบการสอน

การเขียนเอกสารประกอบการสอน

Digital leadership 2022

กระบวนการร่างบทความวิจัยในวารสารระดับนานาชาติด้านคอมพิวเตอร์

Online education innovation_new_normal_2022

การจัดการเรียนการสอนอาชีวศึกษา2

การจัดการเรียนการสอนอาชีวศึกษา1

การทำผลงานทางวิชาการ เกณฑ์และการขอกำหนดตำแหน่งทางวิชาการ

Digital transformation

แนวทางการตีพิมพ์บทความวิจัยระดับนานาชาติ

Dernier

Sports & Fitness Value Added Course FY..

Disha Kariya

Gardella_PRCampaignConclusion Pitch Letter

MateoGardella

SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...

KokoStevan

Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...

EduSkills OECD

In BC’s nearly-decade-old “new” curriculum, the curricular competencies describe the processes that students are expected to develop in areas of learning such as mathematics. They reflect the “Do” in the “Know-Do-Understand” model. Under the “Communicating” header falls the curricular competency “Explain and justify mathematical ideas and decisions.” Note that it contains two processes: “Explain mathematical ideas” and “Justify mathematical decisions.” I have broken it down into its separate parts in order to understand--or reveal--its meaning. The first part is commonplace in classrooms. By now, BC math teachers—and students—understand that “Explain mathematical ideas” means more than “Show your work.” Teachers consistently ask “What did you do?” and “How do you know?” This process is about retelling, not just of steps but of thinking. The second part happens less frequently. Think back to the last time that you observed a student make—a necessary precursor to justify—a mathematical decision. “Justify” is about defending. Like “explain,” it involves reasoning; unlike “explain,” it also involves opinion and debate. In order to reinterpret the curricular competency “Explain and justify mathematical ideas and decisions,” I will continue to take apart its constituent part “Justify mathematical decisions” and carefully examine the term “mathematical decisions.” What, exactly, is a “mathematical decision”? Below, I will categorize answers to this question. These categories, and the provided examples, may help to suggest new opportunities for students to justify.

Making and Justifying Mathematical Decisions.pdf

Chris Hunter

Paris 2024 Olympic Geographies - an activity

GeoBlogs

An Overview of Mutual Funds Bcom Project.pdf

SanaAli374401

Web & Social Media Analytics Previous Year Question Paper.pdf

Jayanti Pande

Z Score,T Score, Percential Rank and Box Plot Graph

Thiyagu K

How to Give a Domain for a Field in Odoo 17

Celine George

Mattingly "AI & Prompt Design: The Basics of Prompt Design"

National Information Standards Organization (NISO)

psychiatric nursing HISTORY COLLECTION .docx

PoojaSen20

Advanced Views - Calendar View in Odoo 17

Celine George

ICT Role in 21st Century Education & its Challenges.pptx

AreebaZafar22

Activity 01 - Artificial Culture (1).pdf

ciinovamais

Accessible design: Minimum effort, maximum impact

dawncurless

SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx

iammrhaywood

Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes

Celine George

Gardella_Mateo_IntellectualProperty.pdf.

MateoGardella

Basic Civil Engineering notes first year Notes Building notes Selection of site for Building Layout of a Building What is Burjis, Mutam Building Bye laws Basic Concept of sunlight ventilation in building National Building Code of India Set back or building line Types of Buildings Floor Space Index (F.S.I) Institutional Vs Educational Building Components & function Sills, Lintels, Cantilever Doors, Windows and Ventilators Types of Foundation AND THEIR USES Plinth Area Shallow and Deep Foundation Super Built-up & carpet area Floor Area Ratio (F.A.R) RCC Reinforced Cement Concrete RCC VS PCC

Basic Civil Engineering first year Notes- Chapter 4 Building.pptx

Denish Jangid

Dernier (20)

Sports & Fitness Value Added Course FY..

Gardella_PRCampaignConclusion Pitch Letter

SECOND SEMESTER TOPIC COVERAGE SY 2023-2024 Trends, Networks, and Critical Th...

Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...

Making and Justifying Mathematical Decisions.pdf

Paris 2024 Olympic Geographies - an activity

An Overview of Mutual Funds Bcom Project.pdf

Web & Social Media Analytics Previous Year Question Paper.pdf

Z Score,T Score, Percential Rank and Box Plot Graph

How to Give a Domain for a Field in Odoo 17

Mattingly "AI & Prompt Design: The Basics of Prompt Design"

psychiatric nursing HISTORY COLLECTION .docx

Advanced Views - Calendar View in Odoo 17

ICT Role in 21st Century Education & its Challenges.pptx

Activity 01 - Artificial Culture (1).pdf

Accessible design: Minimum effort, maximum impact

SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx

Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes

Gardella_Mateo_IntellectualProperty.pdf.

Basic Civil Engineering first year Notes- Chapter 4 Building.pptx

A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning

1. 1 Assoc.Prof. Panita Wannapiroon, Ph.D. Preecha Pangsuban Ph.D. Candidate Assoc.Prof. Prachyanun Nilsook, Ph.D.

2. 2 INTRODUCTION ICT has become a daily routine.

3. 3 INTRODUCTION (cont.) Cyber attacks

4. 4 INTRODUCTION (cont.) AI and ML used for vulnerability detection and data processing

5. 5 The attacker can use ML to support his attacks at the same time INTRODUCTION (cont.)

6. 6 The Direct effects such as, reduction in work efficiency, add recovery times having damage cost. INTRODUCTION (cont.)

7. 7 Indirect effects includes loss of business and non-credible organizations INTRODUCTION (cont.)

8. 8 Information system should have a security risk assessment to prepare for threats, analyze the risks involved and preventive measures INTRODUCTION (cont.)

9. 9 Risk assessment (RA) includes, risk identification, risk analysis, and risk priority. INTRODUCTION (cont.)

10. 10 Risk assessment based on the likelihood of the occurrence and the severity of the impact of attacks INTRODUCTION (cont.)

11. 11 CICIDS2017 dataset was used in this research for threat detection and vulnerability INTRODUCTION (cont.)

12. 12 RESULT (cont.) CICIDS2017 dataset have a variety of ways to detect Denial of Service, Password attack, Probing and vulnerability No Group of Intrusion Type of Intrusion 1 Normal Benign 2 Denial of Service: Dos Botnet, DDoS, DoS GoldenEye, DoS Hulk, DoS Slowhttp, DoS Slowloris 3 Password attacks FTP-Patator, SSH-Patator, Web-Attack-Brute-Force 4 Probing Port Scan 5 Vulnerability Heartbleed Attack, Infiltration, Web-Attack-Sql- Injection, Web-Attack-XSS

13. 13 INTRODUCTION Example of CICIDS2017 dataset INTRODUCTION (cont.)

14. 14 INTRODUCTION (cont.) • Using CICIDS2017 dataset to create predictive models by ML for predicting the likelihood of attacks • The impact is assessed by the severity of each type of attacks. • Risk assessment is the result of the likelihood and impact that has occurred as a risk matrix of information systems.

15. 15 To study the concept of RA for information system with CICIDS 2017 dataset using ML. 1 2 To design architecture of RA for information system with CICIDS 2017 dataset using ML. 1 OBJECTIVES OF THE RESEARCH 2

16. 16 To study information and related research about RA on information system based on intrusion network with ML and analyzed data for concept design. 1 To develop the components of RA system from the concept.2 To design architecture of RA system from the concept.3 1 2 3 RESEARCH OPERATION

17. 17 RESULT The conceptual framework

18. 18 System components RESULT (cont.)

19. 19 System Architecture RESULT (cont.)

20. 20 RESULT (cont.) The risk matrix report form

21. 21 CONCLUSIONS The system architecture consist of three main sections; network data capture, risk predictive analysis and Risk Assessment report. It is designed to work in real time, the network data capture design need a special Network Interface Card that high efficiency and speed to be able to capture data into “pcap” form The network data converted to CICIDS2017 dataset form and they are predicted intrusion by ML and stored into the data file Logstash and Elasticsearch works together for handling and searching big log files to increase the number of servers

22. 22 CONCLUSIONS (cont.) ML to identify known threats and suspicious behavior, by using faster time helps reduce some mistakes caused by false positive and false negative. ML can identify threats, which can be clearly divided according to the type of intrusion and can also specify the time of the intrusion in real time. The system can monitor RA and warn the system administrator for prevention of risk of information system and harm reduction. It is a tool used at work by institutions.

23. Any Question 23

24. CONTACT 24 E-mail : preecha@yru.ac.th Facebook : www.facebook.com/ppbyru

25. Thank YouPRESENTED BY : Preecha Pangsuban A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning 25

A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning

Recommandé

Recommandé

Contenu connexe

Tendances

Tendances (20)

Similaire à A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning

Similaire à A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning (20)

Plus de Prachyanun Nilsook

Plus de Prachyanun Nilsook (20)

Dernier

Dernier (20)

A Real-time Risk Assessment for Information System with CICIDS2017 dataset using Machine Learning