User Account

All Pages

Data analytics for intrusion detection

Assignment Help Computer Networking
Reference no: EM132221555 , Length: word count:1500

Data analytics for intrusion detection

Purpose of the assessment (with ULO Mapping)

This assignment assesses the following Unit Learning Outcomes; students should be able to demonstrate their achievements in them.
c) Evaluate intelligent security solutions based on data analytics
d) Analyse and interpret results from descriptive and predictive data analysis

Assignment Overview

You are hired by the Purehacking Pty Ltd (a popular penetration testing company in Australia) to consult an accounting company which requested advanced instruction detection system for their internal network. The accounting firm had suffered malicious hacking attack which compromised their client's information and released it on the dark web. The reputation of the accounting company was severely damaged, and the managing director of the accounting firm was determined not to tolerate any such future attacks that can jeopardize his business.

Your supervisor at Purehacking wishes to try out an advanced data analytic tool to improve the network instruction detection at the accounting company.

Your supervisor has asked you to test out a few data analytics techniques available on the market and evaluate their performance in network intrusion detection.

To provide a fair comparison of security performance, your supervisor is recommending you consider a network security benchmark data such as the popular KDD99 dataset.

Your supervisor will make recommendation to the accounting firm based on your technical findings and report.

Your tasks are to:

1. Perform intrusion detection using the available data analytics techniques using WEKA or other platforms.

2. Evaluate the performance of data analytic techniques in intrusion detection using comparative analysis

3. Recommend the security solution using the selected data analytic technique.

In consultation with your lecturer, you are to choose at least three data analytic techniques for network intrusion detection and prepare a technical research report. Follow the marking guide to prepare your report.

Section 1: Data Analytic Tools and Techniques
In this section, your task is to complete and write a report on the following:

1. Install/deploy the data analytic platform of your choice (on Win8 VM on VirtualBox).

2. Demonstrate the use of at least two data analytic techniques (e.g. decision tree, clustering or other techniques) - you are free to use any sample testing data to demonstrate your skills and knowledge.

3. Lab demonstration: Must explain how each tool technique works in your lab prior to week 11. Data can be anything including Iris data set.

Section 2: Data Analytic for Network Intrusion Detection

You are to perform the following tasks and write a full report on your outcomes:

1. Convert the benchmark data suitable for the data analytic tools and platform of your choice. Explain the differences in the available data format for data analytics.

2. Select the features with rationale (external reference or your own reasoning).

3. Create training and testing data samples

4. Evaluate and select the data analytic techniques for testing

5. Classify the network intrusion given the sample data

6. Evaluate the performance of intrusion detection using the available tools and technologies (e.g. confusion matrix).

7. Identify the limitation of overfitting

8. Evaluate and analyse the use of ensemble tools

9. Recommend the data analytic solution for the network intrusion detection.

10. Discuss future research work given time and resources

Attachment:- Assignment.rar

Reference no: EM132221555

Questions Cloud

What technology did they implement : Identify two organizations that have benefited from implementing a technology that improved their data governance.
Explain when demand would be perfectly elastic : Price elasticity of demand measures the responsiveness of quantity demanded of a product to a change in the price of that product.
Why do we need an automated tool for sql injection : Discuss sqlmap, an automated tool for sql injection and database takeover in 500 words or more. How does it work? Where do you get it? How much does it cost?
What happened to the english population in the 19th century : Consider whether you are a Malthusian pessimist or Jeffersonian optimist. Why? What happened to the English Population in the 19th century?
Data analytics for intrusion detection : MN623 Cyber Security and Analytics - Data analytics for intrusion detection - Perform intrusion detection using the available data analytics techniques
Describe the written or non-written policy : Describe the written or non-written policy in place for your home network. After you post it, compare yours with other classmates' policies and discuss why one.
Define how to implement a new erp system : You are part of Enterprise Risk Management and you organization is planning to implement a new ERP system. You are going from Microsoft Dynamics to SAP.
To what degree do you think it likely that the gloomy : The reason for the dismal theories of Ricardo and Malthus not becoming true, Heilbroner suggests, is that we have been saved by technology.
What about off-site storage of backups : There have been several incidents lately in which backup media containing personal customer information were lost or stolen. How should backup media be secured?

Reviews

len2221555

1/23/2019 1:37:40 AM

Implementation All elements are present and very well Implemented. Components present with good cohesive Components present and mostly well integrated Most components present Proposal lacks structure. Explanation All elements are present and well integrated. Components present with good cohesion Components present and mostly well integrated Most components present Lacks structure.

len2221555

1/23/2019 1:37:33 AM

Grade Mark HD 80%+ D 70%-79% CR 60%-69% P 50%-59% Fail < 50% Excellent Very Good Good Satisfactory Unsatisfactory Evaluation Logic is clear and easy to follow with strong arguments Consistency logical and convincing Mostly consistent and convincing Adequate cohesion and conviction Argument is confused and disjointed

len2221555

1/23/2019 1:37:17 AM

Section 2 – Data analytics 1. Convert the benchmark data suitable for the data analytic tools and platform of your choice. Explain the differences in the available data format for data analytics. 2. Select the features with rationale (external reference or your own reasoning). 3. Create training and testing data samples 4. Evaluate and select the data analytic techniques for testing 5. Classify the network intrusion given the sample data 6. Evaluate the performance of intrusion detection using the available tools and technologies (e.g. confusion matrix). 7. Identify the limitation of overfitting 8. Evaluate and analyse the use of ensemble tools 9. Recommend the data analytic solution for the network intrusion detection. 10. Discuss future research work given time and resources 5 practical report 5 5 5 5 5 5 5 5 5

len2221555

1/23/2019 1:37:02 AM

Report structure and report presentation Compile a written report of the above along with your evaluations and recommendations. The report must contain several screenshots of evidence and a short description for each snapshot that provides proof that you completed the work. 10

len2221555

1/23/2019 1:36:49 AM

Marking criteria: Section to be included in the report and demonstration Description of the section Marks Section 1 - Install and deploy Introduction to each of your data analytic tools and platforms 3 Section 1- Explain and evaluate Full explanation of each data analytic techniques with support from either own evidence(s) and/or from other online sources. Advantages and disadvantages of each data analytic techniques (of your choice). 5 Section 1 - Lab demonstration To obtain full marks, students need to implement and demonstrate the use of at least two data analytic techniques in any platform of your choice. You may choose to use any testing data for demonstration. 10

len2221555

1/23/2019 1:36:38 AM

Due Date Friday 11:55 PM, Week 11 Submission Guidelines • All work must be submitted on Moodle by the due date along with a completed Assignment Cover Page. • The assignment must be in MS Word format, 1.5 spacing, 11-pt Calibri (Body) font and 2 cm margins on all four sides of your page with appropriate section headings. • Reference sources must be cited in the text of the report, and listed appropriately at the end in a reference list using IEEE referencing style.

Write a Review

Computer Networking Questions & Answers

  Many lan administrators require frequent password changes

1.write a 200- to 300-word response to the following question what are the predominant electronic and physical threats

  How many city-pairs does network server serve

A network carrier serves 39 spoke cities from a single hub. How many city-pairs does it serve? (A city-pair is City A to City B. City A to City B and City B to City A are consider just one city-pair)

  What is a virtual private network

ACC539 - Accounting Information Systems - What is a Virtual Private Network and What are the risks faced by JKS Accounting associated with staff

  What is tco and why is the tco so high

What is TCO? Why is the TCO so high? How can network costs be reduced? What do network management software systems do and why are they important?

  Find out the average error rates

Investigate the network at your organization (or a service offered by an IXC) to find out the average error rates.- What is the efficiency if a 100-byte file is transmitted using Ethernet? A 10,000-byte file?

  Disadvantages of having an application program per server

As we have seen, servers can be implemented by separate application programs or by building server code into the protocol software in an operating system.

  Explain the significance on the design and use of various

explain the significance on the design and use of various variables and attributes control charts of being based on

  Network security

A firewall is generally set up to protect a particular network or network component from attack, or unauthorized penetration, by outside invaders. However, a firewall also may be set up to protect vital corporate or institutional data or resource..

  list the OSI layer that performs that function

For each function in the previous exercise, list the OSI layer that performs that function. Is this e-mail session a logical connection or physical connection?

  Assess data communication and networking options

Assess data communication and networking options for a computer system.

  Distinguish between lan and wan

Distinguish between local area networks (LANs), wide area networks (WANs), and wireless technologies.

  Elastic caching over typical web caching

MN504 - develop skills in critical thinking, reasoning, problem solving in regards to Networked Applications Management

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd