Application Audit Trail Analysis

Visa enkel post
dc.contributor.authorSchuberg, Björn
dc.contributor.departmentChalmers tekniska högskola / Institutionen för data- och informationsteknik (Chalmers)sv
dc.contributor.departmentChalmers University of Technology / Department of Computer Science and Engineering (Chalmers)en
dc.date.accessioned2019-07-03T12:27:54Z
dc.date.available2019-07-03T12:27:54Z
dc.date.issued2010
dc.description.abstractAn application audit trail may be analyzed for a number of reasons; performance enhancement of networks and computers, identification of security incidents and operational problems as well as fraud tracking. In this thesis, focus lies on detecting intrusions into information systems. An approach for analysis of an audit trail from an arbitrary application is presented. It's extensible and allows for further methods of analysis to be incorporated. For the purpose of this thesis, two methods were implemented and used in parallel to find intrusions. A technique for labeling signaled intrusions with an indication of their certainty is developed. This allows for focus on alarms with a higher certainty, and will thus facilitate a faster response. The analysis system was tested against several scenarios. All which contained intrusions were detected. Among these, all but one was deemed as an intrusion with highest certainty. Further, the amount of false positives when analyzing the test datasets were only fraction of a percentage.
dc.identifier.urihttps://hdl.handle.net/20.500.12380/128986
dc.language.isoeng
dc.setspec.uppsokTechnology
dc.subjectProgramvaruteknik
dc.subjectSoftware Engineering
dc.titleApplication Audit Trail Analysis
dc.type.degreeExamensarbete för masterexamensv
dc.type.degreeMaster Thesisen
dc.type.uppsokH
local.programmeComputer systems and networks (MPCSN), MSc
Ladda ner
Original bundle
Visar 1 - 1 av 1
Bild (thumbnail)
Namn:
128986.pdf
Storlek:
709.28 KB
Format:
Adobe Portable Document Format
Beskrivning:
Fulltext
Ladda ner
Samling
Examensarbeten för masterexamen