EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Windows Based Data Sets for Evaluation of Robustness of Host Based Intrusion Detection Systems (IDS) to Zero-Day and Stealth Attacks

Waqas Haider, Gideon Creech, Yi Xie and Jiankun Hu
Additional contact information
Waqas Haider: School of Engineering and Information Technology, Australian Defence Force Academy, University of New South Wales, Canberra 2052, Australia
Gideon Creech: School of Engineering and Information Technology, Australian Defence Force Academy, University of New South Wales, Canberra 2052, Australia
Yi Xie: School of Data and Computer Science, Sun Yat-Sen University, Guangzhou 510006, China
Jiankun Hu: School of Engineering and Information Technology, Australian Defence Force Academy, University of New South Wales, Canberra 2052, Australia

Future Internet, 2016, vol. 8, issue 3, 1-8

Abstract: The Windows Operating System (OS) is the most popular desktop OS in the world, as it has the majority market share of both servers and personal computing necessities. However, as its default signature-based security measures are ineffectual for detecting zero-day and stealth attacks, it needs an intelligent Host-based Intrusion Detection System (HIDS). Unfortunately, a comprehensive data set that reflects the modern Windows OS’s normal and attack surfaces is not publicly available. To fill this gap, in this paper two open data sets generated by the cyber security department of the Australian Defence Force Academy (ADFA) are introduced, namely: Australian Defence Force Academy Windows Data Set (ADFA-WD); and Australian Defence Force Academy Windows Data Set with a Stealth Attacks Addendum (ADFA-WD: SAA). Statistical analysis results based on these data sets show that, due to the low foot prints of modern attacks and high similarity of normal and attacked data, both these data sets are complex, and highly intelligent Host based Anomaly Detection Systems (HADS) design will be required.

Keywords: operating system; kernel; auditing; anomaly; low foot print attacks (search for similar items in EconPapers)
JEL-codes: O3 (search for similar items in EconPapers)
Date: 2016
References: View complete reference list from CitEc
Citations: View citations in EconPapers (1)

Downloads: (external link)
https://www.mdpi.com/1999-5903/8/3/29/pdf (application/pdf)
https://www.mdpi.com/1999-5903/8/3/29/ (text/html)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:gam:jftint:v:8:y:2016:i:3:p:29-:d:73345

Access Statistics for this article

Future Internet is currently edited by Ms. Grace You

More articles in Future Internet from MDPI
Bibliographic data for series maintained by MDPI Indexing Manager ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-03-24
Handle: RePEc:gam:jftint:v:8:y:2016:i:3:p:29-:d:73345