User Account

All Pages

Analyses and evaluate one public dataset

Assignment Help Computer Network Security
Reference no: EM132307398

Data analytics for intrusion detection

Purpose of the assessment

This assignment assesses the following Unit Learning Outcomes; students should be able to demonstrate their achievements in them.
c) Evaluate intelligent security solutions based on data analytics
d) Analyse and interpret results from descriptive and predictive data analysis

Assignment Overview

For this assignment, you will analyses and evaluate one public dataset for Network Intrusion dataset, which is given in table 1.

Your task is to complete and make a research report based on the following:

1- Perform intrusion detection using the available data analytics techniques (WEKA) or other platforms, as per the instructions provided in section 1.

2- In consultation with your lecturer, you are to choose at least three data analytic techniques for network intrusion detection and prepare a technical research report. Evaluate the performance of data analytic techniques in intrusion detection using comparative analysis.

3- Recommend with the justification, the suitable security solution from the comparative study of the selected data analytic techniques.

Table 1: List of public intrusion datasets.

Dataset

Attacks

UNSW-NB15

analysis, backdoors, DoS, exploits, fuzzers, generic, reconnaissance,

shellcode, worms

NSL-KDD

NSL-KDD [66] DoS, remote-to-local,

user-to-root, probing

KDD CUP 99

DoS, remote-to-local, user-to-root,

probing

CIC DoS

Application layer DoS attacks (executed through ddossim, Goldeneye, hulk, RUDY,

Slowhttptest,  Slowloris)

Section 1: Data Analytic Tools and Techniques

In this section, your task is to complete and write a report on the following:

1. Install/deploy the data analytic platform of your choice (on Win8 VM on VirtualBox).
2. Demonstrate the use of at least two data analytic techniques (e.g. decision tree, clustering or other techniques) - you are free to use any sample testing data to demonstrate your skills and knowledge.
3. Lab demonstration: Must explain how each tool technique works in your lab prior to week
11. Students need to choose only one dataset from Table 1.

Section 2: Data Analytic for Network Intrusion Detection

You are to perform the following tasks and write a full report on your outcomes:

1. Convert the benchmark data suitable for the data analytic tools and platform of your choice. Explain the differences in the available data format for data analytics.

2. Select the features with rationale (external reference or your own reasoning).

3. Create training and testing data samples.

4. Evaluate and select the data analytic techniques for testing.

5. Classify the network intrusion given the sample data.

6. Evaluate the performance of intrusion detection using the available tools and technologies (e.g. confusion matrix).

7. Identify the limitation of overfitting.

8. Evaluate and analyse the use of ensemble tools.

9. Recommend the data analytic solution for the network intrusion detection.

10. Discuss future research work given time and resources

Note: Take screenshots of your work on WEKA, showing the answer of above questions. Include these screenshots in your final report.

Attachment:- Data analytics for intrusion detection.rar

Verified Expert

In this assignment, we have perform analysis of different attacks. There different type of attacks and we have written report on the attacks. We know that there are internal and external attacks.

Reference no: EM132307398

Questions Cloud

Determine the realization of the system : ELEC30001 - Digital Signal Processing - Middle East College - Determine the realization of the system that requires the minimum possible amount of memory
Describe what passage tells you about the mothers character : Describe what this passage tells you about the mother's character. Support your ideas by referring to specific parts of the text
Draw a random sample to complete statistical analysis : FIN60003 Business Modelling and Analysis Assignment, Swinburne University of Technology, Australia. Draw a random sample to complete statistical analysis
How would one go about managing from such a perspective : There is a saying among managers that one must manage the employee's perception as well as the reality. What does this mean to you? How would one go about
Analyses and evaluate one public dataset : MN623 Cybersecurity and Analytics - Data analytics for intrusion detection - analyses and evaluate one public dataset for Network Intrusion dataset
Identify cost pools and assign costs to them : Identify cost pools and assign costs to them, considering the three cost objects of interest - Determine a cost driver for each cost pool and explain
Describe the situation as fully as you can-remember : Describe the situation as fully as you can-remember, I was not there, so no you will need to provide enough detail that I understand what was happening.
Draft a reflection paper in which you organize your notes : Draft a reflection paper in which you organize your notes, collect your thoughts, and describe how your learning experience in this week shapes.
Is the government restricting american civil liberties : Is the government restricting American civil liberties. This needs to be in an arguementive essay. Definition, Cause-and-Effect, Evaluation, and Ethical.

Reviews

len2307398

5/16/2019 4:49:45 AM

Reference style Follow IEEE reference style 2 Section 2 – Data analytics practical report 1. Convert the benchmark data suitable for the data analytic tools and platform of your choice. Explain the differences in the available data format for data analytics. 2. Select the features with rationale (external reference or your own reasoning). 3. Create training and testing data samples 4. Evaluate and select the data analytic techniques for testing 5. Classify the network intrusion given the sample data 6. Evaluate the performance of intrusion detection using the available tools and technologies (e.g. confusion matrix). 7. Identify the limitation of overfitting 8. Evaluate and analyse the use of ensemble tools 9. Recommend the data analytic solution for the network intrusion detection. 10. Discuss future research work given time and resources. 5 5 5 5 5 5 5 5 5 5

len2307398

5/16/2019 4:49:36 AM

Section 1 - Lab demonstration To obtain full marks, students need to implement and demonstrate the use of at least two data analytic techniques in any platform of your choice. You may choose to use any testing data for demonstration. 10 Report structure and report presentation Compile a written report of the above along with your evaluations and recommendations. The report must contain several screenshots of evidence and a short description for each snapshot that provides proof that you completed the work. 10

len2307398

5/16/2019 4:49:26 AM

Section to be included in the report and demonstration Description of the section Marks Section 1 - Install and deploy Introduction to each of your data analytic tools and platforms 3 Section 1- Explain and evaluate Full explanation of each data analytic techniques with support from either own evidence(s) and/or from other online sources. Advantages and disadvantages of each data analytic techniques (of your choice). 5

len2307398

5/16/2019 4:48:59 AM

Submission Guidelines ? All work must be submitted on Moodle by the due date along with a completed Assignment Cover Page. ? The assignment must be in MS Word format, 1.5 spacing, 11-pt Calibri (Body) font and 2 cm margins on all four sides of your page with appropriate section headings. ? Reference sources must be cited in the text of the report, and listed appropriately at the end in a reference list using IEEE referencing style.

Write a Review

Computer Network Security Questions & Answers

  Analyze a method for consolidating core network services

Explain the key considerations behind establishing trust relationships between the two domains. Analyze a method for consolidating Core Network services.

  Why file system permissions so important in linux dac model

Why are file system permissions so important in the Linux DAC model? How do they relate or map to the concept of subject-action-object transactions?

  When applying cryptography determine why securing the key

when applying cryptography determine why securing the key is more important than securing plaintext or ciphertext.

  What are advantage of logging more information to alert file

What are the advantages of logging more information to the alerts file? What are the disadvantages of logging more information to the alerts file? What are the advantages of using rule sets from the snort web site?

  Malicious attacks and / or threats that you identified

For each of the three (3) or more malicious attacks and / or threats that you identified in Assignment 1, choose a strategy for addressing the associated risk (i.e., risk mitigation, risk assignment, risk acceptance, or risk avoidance). Explain your ..

  How did the suspect gain access to our ftp server

How did the suspect gain access to our FTP server? What commands did the suspect run on the FTP server? What websites were accessed by the suspect?

  Eulers theorem problem

Any cipher system that needs to avoid encrypting certain messages should be avoided like the plague - what do you have to say for yoursel

  Create a prescriptive section of your playbook

Create a prescriptive section of your playbook providing guidelines to secure each of these areas - Network connections and Mobile devices

  Determine how rootkits can be used

Determine how rootkits can be used as an alternative for data hiding and explicate why they can be used for this purpose. Describe the processes and tools used by an investigator in determining whether signs of steganography are present in a given ..

  What is the man-in-the-middle attack

What is the certificate? Please explain the meaning of CRL (certificate revocation list).

  Describe emerging technology and trend in telecommunications

The networking industry is evolving very rapidly and various types of technologies such as data, voice and video networks are converging.

  Is internet pose threats to traditional client server system

Hures is a leading human resource service provider. To keep up with growing business demands,it implemented its first information system in 1987 purchasing a main frame computer that servedso-called dumb terminals on the users' desktops.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd