- Title
- An Exploratory Framework for Extrusion Detection
- Creator
- Stalmans, Etienne
- Creator
- Irwin, Barry V W
- Date Issued
- 2012
- Date
- 2012
- Type
- text
- Type
- article
- Identifier
- http://hdl.handle.net/10962/428027
- Identifier
- vital:72481
- Identifier
- https://www.researchgate.net/profile/Barry-Ir-win/publication/327622736_An_Exploratory_Framework_for_Extrusion_Detection/links/5b9a12ba299bf14ad4d6a3d7/An-Exploratory-Framework-for-Extrusion-Detection.pdf
- Description
- Modern network architecture allows multiple connectivity options, increasing the number of possible attack vectors. With the number of internet enabled devices constantly increasing, along with employees using these devices to access internal corporate networks, the attack surface has become too large to monitor from a single end-point. Traditional security measures have focused on securing a small number of network endpoints, by monitoring inbound con-nections and are thus blind to attack vectors such as mobile internet connections and remova-ble devices. Once an attacker has gained access to a network they are able to operate unde-tected on the internal network and exfiltrate data without hindrance. This paper proposes a framework for extrusion detection, where internal network traffic and outbound connections are monitored to detect malicious activity. The proposed framework has a tiered architecture con-sisting of prevention, detection, reaction and reporting. Each tier of the framework feeds into the subsequent tier with reporting providing a feedback mechanism to improve each tier based on the outcome of previous incidents.
- Format
- 5 pages
- Format
- Language
- English
- Relation
- Proceedings of Southern African Telecommunication Networks and Applications Conference (SATNAC)
- Relation
- Stalmans, E. and Irwin, B., An Exploratory Framework for Extrusion Detection. ICT Uses in Warfare and the Safeguarding of Peace 2012 (IWSP 2012) / Southern Africa Telecommunication Networks and Applications Conference (SATNAC) 2012
- Relation
- Proceedings of Southern African Telecommunication Networks and Applications Conference (SATNAC) volume 2012 number 1 1 5 2012 Conference
- Rights
- Publisher
- Rights
- Use of this resource is governed by the terms and conditions of the Southern Africa Telecommunication Networks and Applications Conference (SA TNAC) Statement (https://www.satnac.org.za/)
- Hits: 76
- Visitors: 85
- Downloads: 10
Collections
Irwin, Barry V W (Prof)
RU Department of Computer Science
SDG 09. Industry, Innovation and Infrastructure
| Thumbnail | File | Description | Size | Format | |||
|---|---|---|---|---|---|---|---|
| View Details Download | SOURCE1 | An Exploratory Framework for Extrusion Detection.pdf | 204 KB | Adobe Acrobat PDF | View Details Download |