Detection of malicious user communities in data networks

Simple item page
dc.contributor.authorMoghaddam, Amir
dc.contributor.supervisorGanti, Sudhakar
dc.date.accessioned2011-04-04T20:16:58Z
dc.date.available2011-04-04T20:16:58Z
dc.date.copyright2011en
dc.date.issued2011-04-04T20:16:58Z
dc.degree.departmentDept. of Computer Scienceen
dc.degree.levelMaster of Science M.Sc.en
dc.description.abstractMalicious users in data networks may form social interactions to create communities in abnormal fashions that deviate from the communication standards of a network. As a community, these users may perform many illegal tasks such as spamming, denial-of-service attacks, spreading confidential information, or sharing illegal contents. They may use different methods to evade existing security systems such as session splicing, polymorphic shell code, changing port numbers, and basic string manipulation. One way to masquerade the traffic is by changing the data rate patterns or use very low (trickle) data rates for communication purposes, the latter is focus of this research. Network administrators consider these communities of users as a serious threat. In this research, we propose a framework that not only detects the abnormal data rate patterns in a stream of traffic by using a type of neural network, Self-organizing Maps (SOM), but also detect and reveal the community structure of these users for further decisions. Through a set of comprehensive simulations, it is shown in this research that the suggested framework is able to detect these malicious user communities with a low false negative rate and false positive rate. We further discuss ways of improving the performance of the neural network by studying the size of SOM's.en
dc.identifier.urihttp://hdl.handle.net/1828/3235
dc.languageEnglisheng
dc.language.isoenen
dc.rightsAvailable to the World Wide Weben
dc.subjectMalicious usersen
dc.subjectSelf organizing mapsen
dc.subjectCommunity detectionen
dc.subjectNetwork securityen
dc.subjectNeural networksen
dc.subjectNetwork data managementen
dc.subjectPeer-to-peer network communicationsen
dc.subject.lcshUVic Subject Index::Sciences and Engineering::Applied Sciences::Computer scienceen
dc.titleDetection of malicious user communities in data networksen
dc.typeThesisen

Files

Original bundle
Now showing 1 - 1 of 1
Thumbnail Image
Name:
Amir_Moghaddam_MasterThesis.pdf
Size:
839.17 KB
Format:
Adobe Portable Document Format
Download
License bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.82 KB
Format:
Item-specific license agreed upon to submission
Description:
Download

Collections

Electronic Theses and Dissertations (ETD)
Theses (Computer Science)
 
University of Victoria Libraries

We acknowledge and respect the Lək̓ʷəŋən (Songhees and Esquimalt) Peoples on whose territory the university stands, and the Lək̓ʷəŋən and W̱SÁNEĆ Peoples whose historical relationships with the land continue to this day.