Use Cases and Design of an Intelligent Intrusion Detection System
Baltic Journal of Modern Computing 2022
Evita Roponena, Jānis Kampars, Jānis Grabis, Guntis Mosāns, Andris Gailītis

Information and communication technologies (ICT) play an important role in almost any business sector and in all aspects of modern society. Data centres are used to host ICT systems and, therefore, are also targets of cyberattacks. ICT security measures are necessary to protect information from unauthorized access. The Human-in-the-Loop approach states that cybersecurity specialists should be continuously involved in automated intrusion detection activities and should be supported by suitable tools to evaluate them. This paper proposes an overall design of the intelligent intrusion detection system with a focus on big data analysis, machine learning, knowledge management, and supporting cybersecurity specialists. The use cases and typical users of a cybersecurity system are defined to specify the requirements of such a system. The architectural design is presented that includes components and technologies supporting implementation of the system. Active learning and learning from evaluation are selected to fulfil the requirements of the Human-in-the-Loop approach.

Atslēgas vārdi
intrusion detection, cybersecurity, big data, human factors

Roponena, E., Kampars, J., Grabis, J., Mosāns, G., Gailītis, A. Use Cases and Design of an Intelligent Intrusion Detection System. Baltic Journal of Modern Computing, 2022, Vol. 10, No. 4, 689.-709.lpp. ISSN 2255-8942. e-ISSN 2255-8950. Pieejams: doi:10.22364/bjmc.2022.10.4.06

Publikācijas valoda
English (en)
RTU Zinātniskā bibliotēka.
E-pasts:; Tālr: +371 28399196