Presentation is loading. Please wait.

Presentation is loading. Please wait.

Big Data Analytics and Challenge Presented by Saurabh Rastogi Asst. Prof. in Maharaja Agrasen Institute of Technology B.Tech(IT), M.Tech(IT)

Published byBaldwin Rose Modified over 8 years ago

Similar presentations

Presentation on theme: "Big Data Analytics and Challenge Presented by Saurabh Rastogi Asst. Prof. in Maharaja Agrasen Institute of Technology B.Tech(IT), M.Tech(IT)"— Presentation transcript:

1 Big Data Analytics and Challenge Presented by Saurabh Rastogi Asst. Prof. in Maharaja Agrasen Institute of Technology B.Tech(IT), M.Tech(IT)

2 BIG DATA ANALYTICS  Big Data refers to technologies and initiatives that involve data that is too diverse, fast-changing or massive for conventional technologies.  With Big Data databases, enterprises can save money, grow revenue, and achieve many other business objectives by building new applications, improving the effectiveness and lowering the cost of existing applications, realizing new sources of competitive advantage.  Big Data is a large collection of data sets, so large in variety, volume and velocity that it is impossible to evaluate and handle them using on hand management tools or traditional methods.

3 HOW BIG DATA WORKS? Network topology for a Big Data system must be designed in such a way that Big Data analysis can be handled in a cost effective way adding high performance, continuous availability, scalability and manageability to the system and at the same time, handling the workload efficiently. Big Data Network topology

4 ADVANTAGES &DISADVANTAGES OF BIG DATA Advantages:- VOLUME VELOCITY VARIETY BIG &MESSY Disadvantages:- Scalability Continuous availability Workload diversity Performance Manageability

5 INTRUSION DETECTION IN BIGDATA Intrusion refers to the hacking of the system or a network which poses a security risk to the private information of the organization. To address the problem of network intrusion, a network intrusion detection system is used which detects such intrusions through the analysis of traffic on the network to monitor signs of malicious activity Overall Structure of Intrusion Detection System

6 INTRUSION DECTECTION SYSTEMS Two types :-  Network Based intrusion detection systems  Host Based intrusion detection systems

7 Network intrusion detection techniques In network based IDS, the individual packets flowing through a network are analyzed on the entire subnet, works in a indiscriminate mode and matches the traffic that is passed on the subnet to the library which contains the information of all the known attacks. In host based IDS, intrusion detection is done on individual devices or hosts on the network. HIDS monitors the in-bound and out-bound packets from the device only and will notify the user or administrator if suspicious activity is detected. All IDS use one of the two detection techniques:-  Statistical anomaly-based IDS . Signature-based IDS

8 ANOMALY DETECTION TECHNIQUES Anomaly detection is based on a host or network. Many distinct techniques are used based on type of processing related to behavioral model. They are of three types:-  Statistical based:  Neural Network Approach  Machine learning approach

9 SIGNATURE-BASED IDS Signature detection searches network traffic for a series of malicious bytes or packet sequences. The major advantage of this technique is that signatures can be easily evolved and understood if we know what network behavior we are trying to distinguish. It may look out for particular strings to detect intrusion. Limitations of signature based IDS are that they only detect attacks whose signatures are already kept in database; a signature must be created for every attack; and new attacks cannot be detected. Also signatures work well against only the fixed behavioral pattern, they fail to deal with attacks created by a worm or human with self-modifiable behavioral characteristics.

10 Tools for Intrusion detection Systems Five Types:-  SNORT  OSSEC-HIDS  FRAGROUTE  METASPLOIT  TRIPWIRE

11 Comparisons of intrusion detection systems tools

12 BEST SUGGESTED TECHNIQUE As we can see from above techniques discussed about the intrusion detection in big data that there are two major type of intrusion detection systems namely Anomaly based IDS and Signature based IDS. Out of these anomaly Detection is a better IDS as compared to Signature based IDS as it’s always ready to detect new type of malwares and intrusions as compared to signature which only detects the intrusion which have their imprints (signatures) already present in the system. Also the IDS are of two type’s viz. Network IDS and Host IDS. Both have their own importance in possible attack detection and prevention and thus a best intrusion detection System should be implemented at Network as well as at Host to develop a robust and secure system. the best approach that can be implemented for intrusion detection in big data analytics is the machine learning approach which is capable of overcoming the basic shortcomings of anomaly detection techniques by protecting the network from intrusion before the attack has been launched. machine learning intrusion detection produces higher accuracy rate in intrusion detection and prediction and extremely low false positive rates. Machine learning methods are immensely superior in analyzing prospective customer churn across data from multiple sources such as CRM transactional and social media sources. High performance machine learning can analyze all of a Big Data and not only its sample.

13 CONCLUSION Machine learning technique due to its wide variety of features and number of algorithms is considered best for intrusion detection in big data analytics.

14 REFERENCES  [1]S. Suthaharan, " Big Data Classification: Problems and Challenges in network intrusion prediction with machine learning“ .[2]M. Rouse, "intrusion detection (ID)," [Online]. Available: http://searchmidmarketsecurity.techtarget.com/definition/intrusion-detection. http://searchmidmarketsecurity.techtarget.com/definition/intrusion-detection  [3]G. PARANN-NISSANY, "Four Great Tips: Cloud Security for Big Data," [Online]. Available: http://www.sys-con.com/node/3044886http://www.sys-con.com/node/3044886 .[4]O. S. L. D. Nikos Virvilis, "Big Data Analytics for Sophisticated Attack".  [5]v. Mattord, "principles of information security," course technology, pp. 290-301, 2008.  [6]S. MARTIN HACK, "http://www.wired.com/2014/03/use-data-tell-future- understanding-machine-learning/," 03 2014. [Online]. Available: http://www.wired.com/2014/03/use-data-tell-future-understanding-machine- learning/. http://www.wired.com/2014/03/use-data-tell-future-understanding-machine- learning/  [7]A. J., "An introduction to neural networks," MIT PRESS, 1995 .[8]E. Dumbill. [Online]. Available: http://radar.oreilly.com/2012/01/what-is-big- data.html.http://radar.oreilly.com/2012/01/what-is-big- data.html .[9]"International Journal of Computer Applications," Volume-28, pp. 0975-8887, August-2011 .[10][Online]. Available: http://www.datastax.com/big-data-challenges.http://www.datastax.com/big-data-challenges  [11][Online]Avaialble:http://www.symantec.com/connect/articles/statistical-based- intrusion-detection  [12](Idris, 2011)

Download ppt "Big Data Analytics and Challenge Presented by Saurabh Rastogi Asst. Prof. in Maharaja Agrasen Institute of Technology B.Tech(IT), M.Tech(IT)"

Similar presentations

Loss-Sensitive Decision Rules for Intrusion Detection and Response Linda Zhao Statistics Department University of Pennsylvania Joint work with I. Lee,

Loss-Sensitive Decision Rules for Intrusion Detection and Response Linda Zhao Statistics Department University of Pennsylvania Joint work with I. Lee,
Scalable Parallel Intrusion Detection Fahad Zafar Advising Faculty: Dr. John Dorband and Dr. Yaacov Yeesha 1 University of Maryland Baltimore County.

Scalable Parallel Intrusion Detection Fahad Zafar Advising Faculty: Dr. John Dorband and Dr. Yaacov Yeesha 1 University of Maryland Baltimore County.
Lecture slides for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 9 “Firewalls and Intrusion Prevention.

Lecture slides for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 9 “Firewalls and Intrusion Prevention.
IDS In Depth Search: Ideas, Descriptions, and Solutions Presentation by Marshall Washburn November 30 th, 2010 CPSC 420/620 w/ Dr. Grossman.

IDS In Depth Search: Ideas, Descriptions, and Solutions Presentation by Marshall Washburn November 30 th, 2010 CPSC 420/620 w/ Dr. Grossman.
The Most Analytical and Comprehensive Defense Network in a Box.

The Most Analytical and Comprehensive Defense Network in a Box.
Intrusion Detection Systems By: William Pinkerton and Sean Burnside.

Intrusion Detection Systems By: William Pinkerton and Sean Burnside.
Lecture 14 Firewalls modified from slides of Lawrie Brown.

Lecture 14 Firewalls modified from slides of Lawrie Brown.
Cyber Threat Analysis  Intrusions are actions that attempt to bypass security mechanisms of computer systems  Intrusions are caused by:  Attackers accessing.

Cyber Threat Analysis  Intrusions are actions that attempt to bypass security mechanisms of computer systems  Intrusions are caused by:  Attackers accessing.
NETWORK SECURITY INTRUSION DETECTION SYSTEMS (IDS) KANDIAH.M Clarkson University, Potsdam, New York.

NETWORK SECURITY INTRUSION DETECTION SYSTEMS (IDS) KANDIAH.M Clarkson University, Potsdam, New York.
Intrusion Detection Systems and Practices

Intrusion Detection Systems and Practices
Snort - an network intrusion prevention and detection system Student: Yue Jiang Professor: Dr. Bojan Cukic CS665 class presentation.

Snort - an network intrusion prevention and detection system Student: Yue Jiang Professor: Dr. Bojan Cukic CS665 class presentation.
EECS 598-2 Presentation Web Tap: Intelligent Intrusion Detection Kevin Borders.

EECS Presentation Web Tap: Intelligent Intrusion Detection Kevin Borders.
5/1/2006Sireesha/IDS1 Intrusion Detection Systems (A preliminary study) Sireesha Dasaraju CS526 - Advanced Internet Systems UCCS.

5/1/2006Sireesha/IDS1 Intrusion Detection Systems (A preliminary study) Sireesha Dasaraju CS526 - Advanced Internet Systems UCCS.
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 6: Cisco IOS Threat Defense Features.

© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 6: Cisco IOS Threat Defense Features.
Lesson 13-Intrusion Detection. Overview Define the types of Intrusion Detection Systems (IDS). Set up an IDS. Manage an IDS. Understand intrusion prevention.

Lesson 13-Intrusion Detection. Overview Define the types of Intrusion Detection Systems (IDS). Set up an IDS. Manage an IDS. Understand intrusion prevention.
Mining Behavior Models Wenke Lee College of Computing Georgia Institute of Technology.

Mining Behavior Models Wenke Lee College of Computing Georgia Institute of Technology.
School of Computer Science and Information Systems

School of Computer Science and Information Systems
seminar on Intrusion detection system

seminar on Intrusion detection system
Lecture 11 Intrusion Detection (cont)

Lecture 11 Intrusion Detection (cont)
Department Of Computer Engineering

Department Of Computer Engineering

Similar presentations

Ads by Google