network security thesis papers

network security Recently Published Documents

Total documents.

• Latest Documents
• Most Cited Documents
• Contributed Authors
• Related Sources
• Related Keywords

A Survey on Ransomware Malware and Ransomware Detection Techniques

Abstract: is a kind of malignant programming (malware) that takes steps to distribute or hinders admittance to information or a PC framework, for the most part by scrambling it, until the casualty pays a payoff expense to the assailant. As a rule, the payoff request accompanies a cutoff time. Assuming that the casualty doesn't pay on schedule, the information is gone perpetually or the payoff increments. Presently days and assailants executed new strategies for effective working of assault. In this paper, we center around ransomware network assaults and study of discovery procedures for deliver product assault. There are different recognition methods or approaches are accessible for identification of payment product assault. Keywords: Network Security, Malware, Ransomware, Ransomware Detection Techniques

Analysis and Evaluation of Wireless Network Security with the Penetration Testing Execution Standard (PTES)

The use of computer networks in an agency aims to facilitate communication and data transfer between devices. The network that can be applied can be using wireless media or LAN cable. At SMP XYZ, most of the computers still use wireless networks. Based on the findings in the field, it was found that there was no user management problem. Therefore, an analysis and audit of the network security system is needed to ensure that the network security system at SMP XYZ is safe and running well. In conducting this analysis, a tool is needed which will be used as a benchmark to determine the security of the wireless network. The tools used are Penetration Testing Execution Standard (PTES) which is one of the tools to become a standard in analyzing or auditing network security systems in a company in this case, namely analyzing and auditing wireless network security systems. After conducting an analysis based on these tools, there are still many security holes in the XYZ wireless SMP that allow outsiders to illegally access and obtain vulnerabilities in terms of WPA2 cracking, DoS, wireless router password cracking, and access point isolation so that it can be said that network security at SMP XYZ is still not safe

A Sensing Method of Network Security Situation Based on Markov Game Model

The sensing of network security situation (NSS) has become a hot issue. This paper first describes the basic principle of Markov model and then the necessary and sufficient conditions for the application of Markov game model. And finally, taking fuzzy comprehensive evaluation model as the theoretical basis, this paper analyzes the application fields of the sensing method of NSS with Markov game model from the aspects of network randomness, non-cooperative and dynamic evolution. Evaluation results show that the sensing method of NSS with Markov game model is best for financial field, followed by educational field. In addition, the model can also be used in the applicability evaluation of the sensing methods of different industries’ network security situation. Certainly, in different categories, and under the premise of different sensing methods of network security situation, the proportions of various influencing factors are different, and once the proportion is unreasonable, it will cause false calculation process and thus affect the results.

The Compound Prediction Analysis of Information Network Security Situation based on Support Vector Combined with BP Neural Network Learning Algorithm

In order to solve the problem of low security of data in network transmission and inaccurate prediction of future security situation, an improved neural network learning algorithm is proposed in this paper. The algorithm makes up for the shortcomings of the standard neural network learning algorithm, eliminates the redundant data by vector support, and realizes the effective clustering of information data. In addition, the improved neural network learning algorithm uses the order of data to optimize the "end" data in the standard neural network learning algorithm, so as to improve the accuracy and computational efficiency of network security situation prediction.MATLAB simulation results show that the data processing capacity of support vector combined BP neural network is consistent with the actual security situation data requirements, the consistency can reach 98%. the consistency of the security situation results can reach 99%, the composite prediction time of the whole security situation is less than 25s, the line segment slope change can reach 2.3% ,and the slope change range can reach 1.2%,, which is better than BP neural network algorithm.

Network intrusion detection using oversampling technique and machine learning algorithms

The expeditious growth of the World Wide Web and the rampant flow of network traffic have resulted in a continuous increase of network security threats. Cyber attackers seek to exploit vulnerabilities in network architecture to steal valuable information or disrupt computer resources. Network Intrusion Detection System (NIDS) is used to effectively detect various attacks, thus providing timely protection to network resources from these attacks. To implement NIDS, a stream of supervised and unsupervised machine learning approaches is applied to detect irregularities in network traffic and to address network security issues. Such NIDSs are trained using various datasets that include attack traces. However, due to the advancement in modern-day attacks, these systems are unable to detect the emerging threats. Therefore, NIDS needs to be trained and developed with a modern comprehensive dataset which contains contemporary common and attack activities. This paper presents a framework in which different machine learning classification schemes are employed to detect various types of network attack categories. Five machine learning algorithms: Random Forest, Decision Tree, Logistic Regression, K-Nearest Neighbors and Artificial Neural Networks, are used for attack detection. This study uses a dataset published by the University of New South Wales (UNSW-NB15), a relatively new dataset that contains a large amount of network traffic data with nine categories of network attacks. The results show that the classification models achieved the highest accuracy of 89.29% by applying the Random Forest algorithm. Further improvement in the accuracy of classification models is observed when Synthetic Minority Oversampling Technique (SMOTE) is applied to address the class imbalance problem. After applying the SMOTE, the Random Forest classifier showed an accuracy of 95.1% with 24 selected features from the Principal Component Analysis method.

Cyber Attacks Visualization and Prediction in Complex Multi-Stage Network

In network security, various protocols exist, but these cannot be said to be secure. Moreover, is not easy to train the end-users, and this process is time-consuming as well. It can be said this way, that it takes much time for an individual to become a good cybersecurity professional. Many hackers and illegal agents try to take advantage of the vulnerabilities through various incremental penetrations that can compromise the critical systems. The conventional tools available for this purpose are not enough to handle things as desired. Risks are always present, and with dynamically evolving networks, they are very likely to lead to serious incidents. This research work has proposed a model to visualize and predict cyber-attacks in complex, multilayered networks. The calculation will correspond to the cyber software vulnerabilities in the networks within the specific domain. All the available network security conditions and the possible places where an attacker can exploit the system are summarized.

Network Security Policy Automation

Network security policy automation enables enterprise security teams to keep pace with increasingly dynamic changes in on-premises and public/hybrid cloud environments. This chapter discusses the most common use cases for policy automation in the enterprise, and new automation methodologies to address them by taking the reader step-by-step through sample use cases. It also looks into how emerging automation solutions are using big data, artificial intelligence, and machine learning technologies to further accelerate network security policy automation and improve application and network security in the process.

Rule-Based Anomaly Detection Model with Stateful Correlation Enhancing Mobile Network Security

Research on network security technology of industrial control system.

The relationship between industrial control system and Internet is becoming closer and closer, and its network security has attracted much attention. Penetration testing is an active network intrusion detection technology, which plays an indispensable role in protecting the security of the system. This paper mainly introduces the principle of penetration testing, summarizes the current cutting-edge penetration testing technology, and looks forward to its development.

Detection and Prevention of Malicious Activities in Vulnerable Network Security Using Deep Learning

Export citation format, share document.

A review on graph-based approaches for network security monitoring and botnet detection

• Published: 30 August 2023
• Volume 23 , pages 119–140, ( 2024 )

Cite this article

• Sofiane Lagraa 1 ,
• Martin Husák 2 ,
• Hamida Seba 3 ,
• Satyanarayana Vuppala 4 ,
• Radu State 5 &
• Moussa Ouedraogo 1  

704 Accesses

Explore all metrics

This survey paper provides a comprehensive overview of recent research and development in network security that uses graphs and graph-based data representation and analytics. The paper focuses on the graph-based representation of network traffic records and the application of graph-based analytics in intrusion detection and botnet detection. The paper aims to answer several questions related to graph-based approaches in network security, including the types of graphs used to represent network security data, the approaches used to analyze such graphs, the metrics used for detection and monitoring, and the reproducibility of existing works. The paper presents a survey of graph models used to represent, store, and visualize network security data, a survey of the algorithms and approaches used to analyze such data, and an enumeration of the most important graph features used for network security analytics for monitoring and botnet detection. The paper also discusses the challenges and limitations of using graph-based approaches in network security and identifies potential future research directions. Overall, this survey paper provides a valuable resource for researchers and practitioners in the field of network security who are interested in using graph-based approaches for analyzing and detecting malicious activities in networks.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Price includes VAT (Russian Federation)

Instant access to the full article PDF.

Rent this article via DeepDyve

Institutional subscriptions

Similar content being viewed by others

A Graph Database-Based Approach to Analyze Network Log Files

Graph based anomaly detection and description: a survey, botnet detection using graph-based feature clustering, research data policy and data availability.

Data sharing is not applicable to this article as no datasets were generated or analyzed during the current study.

https://grasec.uni.lu/ .

https://www.fvv.um.si/eicc2022/cnacys.html .

A network is said to be assortative when high degree nodes are, on average, connected to other nodes with high degree and low degree nodes are, on average, connected to other nodes with low degree [ 85 ].

Akoglu, L., Tong, H., Koutra, D.: Graph based anomaly detection and description: a survey. Data Min. Knowl. Disc. 29 (3), 626–688 (2014)

Article   MathSciNet   Google Scholar  

Amini, P., Araghizadeh, M.A., Azmi, R.: A survey on botnet: classification, detection and defense. In: International Electronics Symposium (IES), pp. 233–238 (2015)

Amrouche, F., Lagraa, S., Kaiafas, G., State, R.: Graph-based malicious login events investigation. In: IFIP/IEEE International Symposium on Integrated Network Management (IM), pp. 63–66 (2019)

Apache Software Foundation: Apache Spark. https://spark.apache.org/ . Accessed 1 Nov 2021

Apache Software Foundation: Apache TinkerPop. https://tinkerpop.apache.org/ . Accessed 1 Nov 2021

Apache Software Foundation: GraphX. https://spark.apache.org/graphx/ . Accessed 1 Nov 2021

Apruzzese, G., Pierazzi, F., Colajanni, M., Marchetti, M.: Detection and threat prioritization of pivoting attacks in large networks. IEEE Trans. Emerg. Top. Comput. 8 (2), 404–415 (2020)

Article   Google Scholar  

ArrangoDB. https://www.arangodb.com . Accessed 1 Nov 2021

Bai, J., Shi, Q., Mu, S.: A malware and variant detection method using function call graph isomorphism. Secur. Commun. Netw. 2019 , 1043,794:1-1043,794:12 (2019)

Berger, A., D’Alconzo, A., Gansterer, W.N., Pescapé, A.: Mining agile DNS traffic using graph analysis for cybercrime detection. Comput. Netw. 100 , 28–44 (2016)

Böhm, F., Menges, F., Pernul, G.: Graph-based visual analytics for cyber threat intelligence. Cybersecurity 1 (1), 16 (2018)

Bou-Harb, E., Debbabi, M., Assi, C.: Big data behavioral analytics meet graph theory: on effective botnet takedowns. IEEE Netw. 31 (1), 18–26 (2017)

Bowman, B., Laprade, C., Ji, Y., Huang, H.H.: Detecting lateral movement in enterprise computer networks with unsupervised graph AI. In: 23rd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2020), pp. 257–268 (2020)

Bowman, B., Huang, H.H.: Towards next-generation cybersecurity with graph AI. SIGOPS Oper. Syst. Rev. 55 (1), 61–67 (2021)

Bunke, H., Allerman, G.: Inexact graph matching for structural pattern recognition. Pattern Recognit. Lett. 1 (4), 245–253 (1983)

Caswell, B., Foster, J.C., Russell, R., Beale, J., Posluns, J.: Snort 2.0 Intrusion Detection. Syngress Publishing, Oxford (2003)

Google Scholar  

Cayley. https://cayley.io . Accessed 1 Nov 2021

Čermák, M., Šrámková, D.: GRANEF: utilization of a graph database for network forensics. In: Proceedings of the 18th International Conference on Security and Cryptography, pp. 785–790. SCITEPRESS (2021)

CESNET and Masaryk University: SABU. https://sabu.cesnet.cz/en/start . Accessed 1 Nov 2021

Chowdhury, S., Khanzadeh, M., Akula, R., Zhang, F., Zhang, S., Medal, H., Marufuzzaman, M., Bian, L.: Botnet detection using graph-based feature clustering. J. Big Data 4 (1), 14 (2017)

CISCO: global—2021 forecast highlights. https://www.cisco.com/c/dam/m/en_us/solutions/service-provider/vni-forecast-highlights/pdf/Global_2021_Forecast_Highlights.pdf (2021)

Data Collection, C., Sharing. https://www.caida.org/data/ . Accessed 1 Nov 2021

Daya, A.A., Salahuddin, M.A., Limam, N., Boutaba, R.: A graph-based machine learning approach for bot detection. In: IFIP/IEEE International Symposium on Integrated Network Management (IM), pp. 144–152 (2019)

Daya, A.A., Salahuddin, M.A., Limam, N., Boutaba, R.: BotChase: graph-based bot detection using machine learning. IEEE Trans. Netw. Serv. Manag. 17 (1), 15–29 (2020)

DGraph. https://dgraph.io . Accessed 1 Nov 2021

Essawy, B.T., Goodall, J.L., Voce, D., Morsy, M.M., Sadler, J.M., Choi, Y.D., Tarboton, D.G., Malik, T.: A taxonomy for reproducible and replicable research in environmental modelling. Environ. Model. Softw. 134 , 104,753 (2020)

Evrard, L., François, J., Colin, J.: Attacker behavior-based metric for security monitoring applied to darknet analysis. In: IFIP/IEEE International Symposium on Integrated Network Management (IM), pp. 89–97 (2019)

Fitch, J.A., III., Hoffman, L.J.: A shortest path network security model. Comput. Secur. 12 (2), 169–189 (1993). https://doi.org/10.1016/0167-4048(93)90100-J

Fredj, O.B.: A realistic graph-based alert correlation system. SEC Commun. Netw. 8 (15), 2477–2493 (2015)

Gamachchi, A., Boztas, S.: Insider threat detection through attributed graph clustering. In: IEEE Trustcom/BigDataSE/ICESS, pp. 112–119 (2017)

Gamachchi, A., Sun, L., Boztas, S.: Graph based framework for malicious insider threat detection. In: 50th Hawaii International Conference on System Sciences, HICSS, pp. 1–10 (2017)

García, S., Grill, M., Stiborek, J., Zunino, A.: An empirical comparison of botnet detection methods. Comput. Secur. 45 , 100–123 (2014)

García, S., Zunino, A., Campo, M.: Survey on network-based botnet detection methods. Secur. Commun. Netw. 7 (5), 878–903 (2014)

Gligor, V.D.: A note on denial-of-service in operating systems. IEEE Trans. Softw. Eng. SE–10 (3), 320–324 (1984). https://doi.org/10.1109/TSE.1984.5010241

Grover, A., Leskovec, J.: node2vec: scalable feature learning for networks. In: Proceedings of the 22nd ACM SIGKDD International Conference on Knowledge Discovery and Data Mining, San Francisco, CA, USA, pp. 855–864 (2016)

Haas, S., Fischer, M.: GAC: graph-based alert correlation for the detection of distributed multi-step attacks. In: Proceedings of the 33rd Annual ACM Symposium on Applied Computing, SAC ’18, pp. 979–988. Association for Computing Machinery (2018)

Haas, S., Wilkens, F., Fischer, M.: Efficient attack correlation and identification of attack scenarios based on network-motifs. In: 2019 IEEE 38th International Performance Computing and Communications Conference (IPCCC) (2019). https://doi.org/10.1109/IPCCC47392.2019.8958734

Haas, S., Fischer, M.: On the alert correlation process for the detection of multi-step attacks and a graph-based realization. SIGAPP Appl. Comput. Rev. 19 (1), 5–19 (2019)

Hochreiter, S., Schmidhuber, J.: Long short-term memory. Neural Comput. 9 (8), 1735–1780 (1997)

Husák, M., Čermák, M.: A graph-based representation of relations in network security alert sharing platforms. In: 2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM), pp. 891–892 (2017)

Husák, M., Komárková, J., Bou-Harb, E., Celeda, P.: Survey of attack projection, prediction, and forecasting in cyber security. IEEE Commun. Surv. Tutor. 21 (1), 640–660 (2019)

Jaikumar, P., Kak, A.C.: A graph-theoretic framework for isolating botnets in a network. Secur. Commun. Netw. 8 (16), 2605–2623 (2015)

JanusGraph. http://janusgraph.org . Accessed 1 Nov 2021

Kaiafas, G., Varisteas, G., Lagraa, S., State, R., Nguyen, C.D., Ries, T., Ourdane, M.: Detecting malicious authentication events trustfully. In: 2018 IEEE/IFIP Network Operations and Management Symposium (NOMS) (2018)

Kao, M.Y.: Encyclopedia of Algorithms. Springer, New York (2007)

Kaynar, K.: A taxonomy for attack graph generation and usage in network security. J. Inf. Secur. Appl. 29 , 27–56 (2016)

Kent, A.D.: Comprehensive, Multi-Source Cyber-Security Events. Los Alamos National Laboratory (2015). https://doi.org/10.17021/1179829

Kiouche, A.E., Lagraa, S., Amrouche, K., Seba, H.: A simple graph embedding for anomaly detection in a stream of heterogeneous labeled graphs. Pattern Recognit. 112 , 107,746 (2021)

Lagraa, S., François, J., Lahmadi, A., Minier, M., Hammerschmidt, C.A., State, R.: BotGM: unsupervised graph mining to detect botnets in traffic flows. In: Cyber Security in Networking Conference, CSNet (2017)

Lagraa, S., François, J.: Knowledge discovery of port scans from darknet. In: 2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM), pp. 935–940 (2017)

Lagraa, S., State, R.: What database do you choose for heterogeneous security log events analysis? In: 2021 IFIP/IEEE International Symposium on Integrated Network Management (IM), pp. 812–817. IEEE (2021)

Lagraa, S., Chen, Y., François, J.: Deep mining port scans from darknet. Int. J. Netw. Manag. 29 (3), e2065 (2019)

Lal, M.: Neo4J Graph Data Modeling. Packt Publishing, Birmingham (2015)

Lallie, H.S., Debattista, K., Bal, J.: A review of attack graph and attack tree visual syntax in cyber security. Comput. Sci. Rev. 35 , 100,219 (2020)

Leichtnam, L., Totel, E., Prigent, N., Mé, L.: Sec2graph: network attack detection based on novelty detection on graph structured data. In: Detection of Intrusions and Malware, and Vulnerability Assessment, pp. 238–258. Springer (2020)

Li, Z., Chen, Q.A., Yang, R., Chen, Y., Ruan, W.: Threat detection and investigation with system-level provenance graphs: a survey. Comput. Secur. 106 , 102,282 (2021)

Li, S., Zhou, Q., Zhou, R., Lv, Q.: Intelligent malware detection based on graph convolutional network. J. Supercomput. 78 (3), 4182–4198 (2022)

Liu, L., De Vel, O., Han, Q., Zhang, J., Xiang, Y.: Detecting and preventing cyber insider threats: a survey. IEEE Commun. Surv. Tutor. 20 (2), 1397–1417 (2018)

Neo4j. https://neo4j.com/ . Accessed 1 Nov 2021

Neo4j: cypher query language. https://neo4j.com/developer/cypher/ . Accessed 1 Nov 2021

Newman, M.E.: Modularity and community structure in networks. Proc. Natl. Acad. Sci. USA 103 , 8577–8582 (2006)

Noel, S., Harley, E., Tam, K.H., Gyor, G.: Big-Data Architecture for Cyber Attack Graphs Representing Security Relationships in NoSQL Graph Databases (2015)

Noel, S., Harley, E., Tam, K.H., Limiero, M., Share, M.: CyGraph: graph-based analytics and visualization for cybersecurity. In: Handbook of Statistics, vol. 35, pp. 117–167. Elsevier (2016)

Noel, S.: A Review of Graph Approaches to Network Security Analytics, pp. 300–323. Springer, New York (2018)

OrientDB. https://orientdb.org . Accessed 1 Nov 2021

Paxson, V.: Bro: a system for detecting network intruders in real-time. Comput. Netw. 31 (23–24), 2435–2463 (1999)

Perozzi, B., Al-Rfou, R., Skiena, S.: DeepWalk: Online Learning of Social Representations, pp. 701–710. ACM (2014)

Quiña Mera, A., Fernandez, P., García, J.M., Ruiz-Cortés, A.: GraphQL: a systematic mapping study. ACM Comput. Surv. 55 (10), 25 (2023). https://doi.org/10.1145/3561818

Roussinov, D.G., Chen, H.: A scalable self-organizing map algorithm for textual classification: a neural network approach to thesaurus generation (1998)

Sadreazami, H., Mohammadi, A., Asif, A., Plataniotis, K.N.: Distributed-graph-based statistical approach for intrusion detection in cyber-physical systems. IEEE Trans. Signal Inf. Process. Netw. 4 (1), 137–147 (2018)

MathSciNet   Google Scholar  

Sanfeliu, A., Fu, K.: A distance measure between attributed relational graphs for pattern recognition. IEEE Trans. Syst. Man Cybern. B 13 (3), 353–363 (1983)

SANS Internet Storm Center: DShield. https://secure.dshield.org/ . Accessed 1 Nov 2021

Shang, Y., Yang, S., Wang, W.: Botnet detection with hybrid analysis on flow based and graph based features of network traffic. In: Cloud Computing and Security, pp. 612–621. Springer (2018)

Sharafaldin, I., Lashkari, A.H., Ghorbani, A.A.: Toward generating a new intrusion detection dataset and intrusion traffic characterization. In: Proceedings of the 4th International Conference on Information Systems Security and Privacy (ICISSP 2018), pp. 108–116 (2018)

Shevchenko, S., Zhdanova, Y., Skladannyi, P., Spasiteleva, S.: Mathematical methods in cybersecurity: graphs and their application in information and cybersecurity. Cybersecur. Educ. Sci. Tech. 1 , 25 (2021). https://doi.org/10.28925/2663-4023.2021.13.133144

Sinha, K., Viswanathan, A., Bunn, J.: Tracking temporal evolution of network activity for botnet detection (2019). https://doi.org/10.48550/ARXIV.1908.03443 . arXiv:1908.03443

Stratosphere Lab: The CTU-13 Dataset. A Labeled Dataset with Botnet, Normal and Background traffic. https://www.stratosphereips.org/datasets-ctu13 . Accessed 1 Nov 2021

Tiddi, I., Schlobach, S.: Knowledge graphs as tools for explainable machine learning: a survey. Artif. Intell. 103627 (2021)

Umer, M.F., Sher, M., Bi, Y.: Flow-based intrusion detection: techniques and challenges. Comput. Secur. 70 , 238–254 (2017)

Venkatesh, B., Choudhury, S.H., Nagaraja, S., Balakrishnan, N.: BotSpot: fast graph based identification of structured P2P bots. J. Comput. Virol. Hack. Tech. 11 (4), 247–261 (2015)

Wang, J., Paschalidis, I.C.: Botnet detection using social graph analysis. In: 2014 52nd Annual Allerton Conference on Communication, Control, and Computing (Allerton), pp. 393–400 (2014)

Wang, J., Paschalidis, I.C.: Botnet detection based on anomaly and community detection. IEEE Trans. Control Netw. Syst. 4 (2), 392–404 (2017)

Wang, W., Shang, Y., He, Y., Li, Y., Liu, J.: BotMark: automated botnet detection with hybrid analysis of flow-based and graph-based traffic behaviors. Inf. Sci. 511 , 284–296 (2020)

Wüchner, T., Ochoa, M., Pretschner, A.: Malware detection with quantitative data flow graphs. In: 9th ACM Symposium on Information, Computer and Communications Security, pp. 271–282. ACM (2014)

Yang, R.: Adjusting assortativity in complex networks. In: Proceedings of the 2014 ACM Southeast Regional Conference, Kennesaw, GA, USA, pp. 2:1–2:5 (2014)

Zeek: Zeek Network Security Monitor tool. https://zeek.org/ . Accessed 1 Nov 2021

Download references

For the research leading to these results, Hamida Seba received funding from Agence National de la Recherche (ANR) under Grant Agreement No. ANR-20-CE39-0008, Radu State received funding from Fonds National de la Recherche (FNR) for CAFFE project. Martin Husák was supported by ERDF “CyberSecurity, CyberCrime, and Critical Information Infrastructures Center of Excellence” (No. CZ.02.1.01/0.0/0.0/16_019/0000822).

Author information

Authors and affiliations.

Fujitsu Luxembourg, Capellen, Luxembourg

Sofiane Lagraa & Moussa Ouedraogo

Institute of Computer Science, Masaryk University, Brno, Czech Republic

Martin Husák

Univ Lyon, UCBL, CNRS, INSA Lyon, LIRIS, UMR5205, 69622, Villeurbanne, France

Hamida Seba

Citibank, Dublin, Ireland

Satyanarayana Vuppala

SnT, University of Luxembourg, Esch-sur-Alzette, Luxembourg

You can also search for this author in PubMed   Google Scholar

Contributions

All authors contributed to the study conception and design. The first draft of the manuscript was written by SL, and all authors commented on previous versions of the manuscript. All authors read and approved the final manuscript. Here are the details. SL and MH, as experts in network security and machine learning at Fujitsu and Masaryk University, respectively, wrote the main manuscript text and figures. HS, as an expert in graph theory, contributed to and wrote a machine learning and graph theory part with a machine learning point of view. SV, as a cyber security expert at Citibank, provided a security overview by reviewing each step of the writing process. RS, as an expert in network and cybersecurity, reviewed the manuscript text, by providing a cybersecurity and machine learning point of view. MO as an expert and head of cybersecurity at Fujitsu, reviewed the manuscript text by providing a cybersecurity point of view. All authors reviewed the manuscript.

Corresponding author

Correspondence to Sofiane Lagraa .

Ethics declarations

Conflict of interest.

All authors certify that they have no affiliations with or involvement in any organization or entity with any financial interest or non-financial interest in the subject matter or materials discussed in this manuscript.

Ethical approval

All authors declare that they adhere to the ethical principles of the journal.

Additional information

Publisher's note.

Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.

Rights and permissions

Springer Nature or its licensor (e.g. a society or other partner) holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law.

Reprints and permissions

About this article

Lagraa, S., Husák, M., Seba, H. et al. A review on graph-based approaches for network security monitoring and botnet detection. Int. J. Inf. Secur. 23 , 119–140 (2024). https://doi.org/10.1007/s10207-023-00742-7

Download citation

Published : 30 August 2023

Issue Date : February 2024

DOI : https://doi.org/10.1007/s10207-023-00742-7

Share this article

Anyone you share the following link with will be able to read this content:

Sorry, a shareable link is not currently available for this article.

Provided by the Springer Nature SharedIt content-sharing initiative

• Graph theory
• Machine learning
• Network security
• Botnet detection
• Cybersecurity

Advertisement

• Find a journal
• Publish with us
• Track your research

• Advisers & Contacts
• Bachelor of Arts & Bachelor of Science in Engineering
• Prerequisites
• Declaring Computer Science for AB Students
• Declaring Computer Science for BSE Students
• Class of '25, '26 & '27 - Departmental Requirements
• Class of 2024 - Departmental Requirements
• COS126 Information
• Important Steps and Deadlines
• Independent Work Seminars
• Guidelines and Useful Information
• Undergraduate Research Topics
• AB Junior Research Workshops
• Undergraduate Program FAQ
• How to Enroll
• Requirements
• Certificate Program FAQ
• Interdepartmental Committee
• Minor Program
• Funding for Student Group Activities
• Mailing Lists and Policies
• Study Abroad
• Jobs & Careers
• Admissions Requirements
• Breadth Requirements
• Pre-FPO Checklist
• FPO Checklist
• M.S.E. Track
• M.Eng. Track
• Departmental Internship Policy (for Master's students)
• General Examination
• Fellowship Opportunities
• Travel Reimbursement Policy
• Communication Skills
• Course Schedule
• Course Catalog
• Research Areas
• Interdisciplinary Programs
• Technical Reports
• Computing Facilities
• Researchers
• Technical Staff
• Administrative Staff
• Graduate Students
• Undergraduate Students
• Graduate Alumni
• Climate and Inclusion Committee
• Resources for Undergraduate & Graduate Students
• Outreach Initiatives
• Resources for Faculty & Staff
• Spotlight Stories
• Job Openings

A Formal Approach to Practical Network Security Management (thesis)

When a system administrator configures a network so it is secure, he understands very well the users, data, and most importantly the intent—what he is trying to do. However,he has a limited understanding of the mechanisms by which components interact and the details of each component. He could easily miscongure the network so a hacker could steal confidential data. In addition to this complexity, about one hundred new security vulnerabilities are found each week, which makes it even more difficult to manage the security of a network installation---because of the large number of program vulnerabilities and challenging time constraints. Even professional administrators find this a difficult (impossible) task. How does one enable the system administrator to securely congure the network with a limited understanding of its components, program bugs and their interactions? The solution is a security analysis framework that modularizes information flow between the system administrator, security expert and the bug expert. The administrator specifies what he is trying to do, the security expert specifies component behavior, the bug expert specifies known bugs. We developed a rule based framework—---Multihost, Multistage, Vulnerability Analysis (MulVAL)---to perform end-to-end, automatic analysis of multi-host, multi-stage attacks on a large network where hosts run on different operating systems. The MulVAL framework has been demonstrated to be modular, flexible, scalable and efficient. We used the framework to find serious configuration vulnerabilities in software from several major vendors for the Windows XP platform.

Help | Advanced Search

Computer Science > Networking and Internet Architecture

Title: intelligent control in 6g open ran: security risk or opportunity.

Abstract: The Open Radio Access Network (Open RAN) framework, emerging as the cornerstone for Artificial Intelligence (AI)-enabled Sixth-Generation (6G) mobile networks, heralds a transformative shift in radio access network architecture. As the adoption of Open RAN accelerates, ensuring its security becomes critical. The RAN Intelligent Controller (RIC) plays a central role in Open RAN by improving network efficiency and flexibility. Nevertheless, it also brings about potential security risks that need careful scrutiny. Therefore, it is imperative to evaluate the current state of RIC security comprehensively. This assessment is essential to gain a profound understanding of the security considerations associated with RIC. This survey combines a comprehensive analysis of RAN security, tracing its evolution from 2G to 5G, with an in-depth exploration of RIC security, marking the first comprehensive examination of its kind in the literature. Real-world security incidents involving RIC are vividly illustrated, providing practical insights. The study evaluates the security implications of the RIC within the 6G Open RAN context, addressing security vulnerabilities, mitigation strategies, and potential enhancements. It aims to guide stakeholders in the telecom industry toward a secure and dependable telecommunications infrastructure. The article serves as a valuable reference, shedding light on the RIC's crucial role within the broader network infrastructure and emphasizing security's paramount importance. This survey also explores the promising security opportunities that the RIC presents for enhancing network security and resilience in the context of 6G mobile networks. It outlines open issues, lessons learned, and future research directions in the domain of intelligent control in 6G open RAN, facilitating a comprehensive understanding of this dynamic landscape.

Submission history

Access paper:.

• Other Formats

References & Citations

• Google Scholar
• Semantic Scholar

BibTeX formatted citation

Bibliographic and Citation Tools

Code, data and media associated with this article, recommenders and search tools.

• Institution

arXivLabs: experimental projects with community collaborators

arXivLabs is a framework that allows collaborators to develop and share new arXiv features directly on our website.

Both individuals and organizations that work with arXivLabs have embraced and accepted our values of openness, community, excellence, and user data privacy. arXiv is committed to these values and only works with partners that adhere to them.

Have an idea for a project that will add value for arXiv's community? Learn more about arXivLabs .

The research of computer network security and protection strategy

• Split-Screen
• Article contents
• Figures & tables
• Supplementary Data
• Peer Review
• Open the PDF for in another window
• Reprints and Permissions
• Cite Icon Cite
• Search Site

Jian He; The research of computer network security and protection strategy. AIP Conf. Proc. 8 May 2017; 1839 (1): 020173. https://doi.org/10.1063/1.4982538

Download citation file:

• Ris (Zotero)
• Reference Manager

With the widespread popularity of computer network applications, its security is also received a high degree of attention. Factors affecting the safety of network is complex, for to do a good job of network security is a systematic work, has the high challenge. For safety and reliability problems of computer network system, this paper combined with practical work experience, from the threat of network security, security technology, network some Suggestions and measures for the system design principle, in order to make the masses of users in computer networks to enhance safety awareness and master certain network security technology.

Citing articles via

Publish with us - request a quote.

Sign up for alerts

• Online ISSN 1551-7616
• Print ISSN 0094-243X
• For Researchers
• For Librarians
• For Advertisers
• Our Publishing Partners  
• Physics Today
• Conference Proceedings
• Special Topics

pubs.aip.org

• Privacy Policy
• Terms of Use

Connect with AIP Publishing

This feature is available to subscribers only.

Sign In or Create an Account

Campus Network Security : Threats, Analysis and Strategies

Ieee account.

• Change Username/Password
• Update Address

Purchase Details

• Payment Options
• Order History
• View Purchased Documents

Profile Information

• Communications Preferences
• Profession and Education
• Technical Interests
• US & Canada: +1 800 678 4333
• Worldwide: +1 732 981 0060
• Contact & Support
• About IEEE Xplore
• Accessibility
• Terms of Use
• Nondiscrimination Policy
• Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity. © Copyright 2024 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.

M.Tech/Ph.D Thesis Help in Chandigarh | Thesis Guidance in Chandigarh

[email protected]

+91-9465330425

Network Security

The network security is the issue which rose due to self-configuring and decentralized nature of the network. The ad-hoc networks are of three type’s mobile ad-hoc networks, wireless sensor networks, and vehicular ad-hoc networks. The malicious nodes may join the network due to which various type of active and passive attacks are possible in the network. The passive type of attack is the type of attack in which malicious nodes do not affect the network performance. The active type of attacks is the attacks in which malicious nodes reduce networks performance in terms of various parameters. There are various topics in network security for thesis and research.

The black hole, wormhole, sinkhole, Sybil etc are the various type of active attacks which reduce network. In recent times, various techniques have been proposed which detect malicious nodes from the network. To improve  the security of the network , techniques of the data encryption, intrusion detection systems are proposed in recent times. The area of research in the network security is secure channel establishment algorithms which are Diffie-Helman, RSA etc which increase the security of the network.

Network Security in a  computer network  is a good topic to choose for the M.Tech thesis. You can get thesis help from a good thesis guidance agencies like Techsparks. Network Security is the means by which any unauthorized access to a computer network is prevented by following certain policies and procedures. Network Security tend to provide certain ways by which only authorized user can get access to the data in the network. Users are provided unique ID and password for access to the network. Network Security is employed in large organizations and institutions for securing the network from any third party access.

A firewall is a system that applies certain protocols for managing and regulating traffic on the network. It acts as the barricade between the internet and the verified internal network. A firewall can be a software or a hardware. Firewalls are commonly used to prevent any threat to the data from an outside source. Hardware firewalls are found on routers while software firewalls are installed on the computers. While working on your M.Tech thesis, you will learn more about how the firewall works. There are three types of firewall:

• Application Gateways
• Packet Filtering
• Hybrid Systems

Types of network attack

Following are the types of attack on the network:

Active Attack

In an active attack, a miscreant tries to attack data while it is being sent to some other location. He can make changes to it or can hack confidential information while data is being transferred.

Passive Attack

In a passive attack, the hacker constantly monitors the system to gain valuable information through open ports. The attacker does not attempt to make changes to data.

CIA Triad in Network Security

It is based on the following principles:

Confidentiality

Protecting the important data from unauthorized access.

Keeping the uniqueness of the data.

Availability

Authorized access to the available data.

Auditing in Network Security

Auditing in network security means checking whether the security policies and procedures are followed by the organization. This helps the organization to find any loophole in the security measures of the organization’s network and hence implement network security.

This was just basics of network security. If you are involved in networking, then this could be a good choice for your M.Tech thesis. There are various  thesis topics  in network security which you can opt for M.Tech, M.Phil and for Ph.D. degree.

Latest Thesis and research topics in Network Security

There are various hot topics in network security. Following is the list of latest research and thesis topics in network security for masters and other postgraduate students:

• Access Management

Wireless Security

Endpoint security, hole punching, malware detection, information security, access management:.

It is a method of securing the network by granting access to authorized users the right to access the network. This will prevent any authorized attack on the network thereby securing the network. This process makes use of certain policies which are defined under Information Security Management. This process was added to secure the confidential information that is transferred through the network. This is a very good and simple topic for the thesis in the field of network security. There are various sub-processes under it which you can explore while working on your thesis and research paper.

Wireless Security makes use of the wireless network to prevent any unauthorized access and attack to the computers. WEP(Wired Equivalent Privacy) and WPA(Wi-Fi Protected Access) are the common types of wireless security. WEP is comparatively weaker than WPA as its password can be broken easily using some software tools. There are certain security issues in wireless communication. A malicious individual can attack the network through ad hoc networks, non-traditional networks, network injection, caffe latte attack. There are various security measures that can be applied to SSID hiding, static IP addressing, 802.11 security, encryption etc. There are many topics to explore in this and is a very good choice for the master’s thesis.

Firewall has been discussed above. It regulates the traffic on the network and is a security measure for communication on the network. It is an interesting research paper topic in network security.

Endpoint Security is another approach for network security in which remote networks are secured. In this devices follow certain security standards. It manages the user’s access to the corporate network. The main components of this type of security are VPN(Virtual Private Network), operating system and an antivirus software. This security management process operates on the client-server model. Software as a Service is another model used in this case.

Honeypot is another security mechanism for network security. It detects, deflects and counteracts the unauthorized use of information systems. It consists of data which is isolated and monitored but appears as if it is a part of the site. Honeypots are classified into two categories production honeypot and research honeypot. Production honeypots capture only limited information and are easy to use whereas research honeypots collect information about the black hat communities who are trying to attack the network. Based on their design, honeypots can be classified as pure honeypots, low-interaction honeypots, and high-interaction honeypots. Go for this topic for your thesis as it is an innovative topic.

It is a computer networking technique that uses network address translation(NAT) for establishing the direct connection between the two parties. In this one or both the parties may be behind firewalls. For punching a hole, each of the clients connects to a third-party server which is unrestricted for temporarily storing external and internal address and port information. Each client’s information is passed on to the other through a server and using that direct connection is established. As a result, packets are transferred to each side.

A malware is a software code which is designed to intentionally cause damage to the computer network. The malware code can be in the form of viruses, worms, Trojan horses, or spyware. The aim of malware detection is to find and remove any type of malware code from the network. Antivirus software, firewalls, and other such strategies help in detecting malware in the network. It is one of the good topics in network security for project and thesis.

Information security refers to a set of strategies applied to prevent any type of threat to digital and non-digital information. It is also an interesting topic in network security. The strategies applied revolves around the CIA objectives which is expanded as confidentiality, integrity, and availability. These objectives ensure that only authorized users can access the information.

These are some of the latest interesting topics in network security for thesis as well as for research. If you face any difficulty in this area you can get  thesis guidance  and thesis help in network security from networking experts.

Techsparks offer thesis and research help in network security topics. You can call us at  +91-9465330425  or email us at  [email protected]  for thesis and research help in network security. You can also fill the contact form the website. We will get back to you as soon as possible.

Techsparks provide the following two guidance packages:

Techsparks standard package.

• Problem Definition/Topic Selection
• Latest IEEE Base Paper (Research Paper Selection)
• Synopsis/Proposal (Plagiarism Free)
• Complete Implementation (Base Paper Implementation, Solution Implementation, Result Analysis And Comparison
• All Kind Of Changes And Modifications
• Online Live Video Classes Through Skype

Techsparks Ultimate Package

• Thesis Report (Plagiarism Free)
• Research Paper (With Guaranteed Acceptance In Any International Journal Like IEEE, Scopus, Springer, Science Direct)

Quick Enquiry

Get a quote, share your details to get free.

The Workforce of Target Corporation: Analyzing Employee Numbers and Distribution Across Operations

This essay about Target Corporation highlights its strategic workforce management and the integral role it plays in the company’s success. It outlines Target’s commitment to diversity and inclusion, strategic placement of staff across operational areas, and investment in employee development and technology. The essay also discusses the challenges Target faces in the retail sector and emphasizes the importance of adapting workforce strategies to remain competitive and responsive to market demands.

How it works

As one of the world’s most iconic retail brands, Target Corporation exemplifies the impact of strategic workforce management. Behind its famous red bullseye logo is a sophisticated network of employees that powers its extensive array of stores, distribution centers, and corporate offices. A detailed examination of Target’s employee structure reveals a story of deliberate personnel distribution, operational efficacy, and the human touch that characterizes every transaction.

Central to Target’s employment strategy is its strong commitment to diversity and inclusion.

With a team exceeding 350,000 members according to the most recent data, the company implements a comprehensive approach to recruitment that mirrors the diverse communities it serves. Target ensures inclusivity from the ground level in sales roles to the upper echelons of its executive team. This focus not only cultivates a rich corporate culture but also boosts consumer satisfaction by aligning the workforce demographics with those of its clientele.

Target strategically places its workforce across different operational areas, critical to the company’s ongoing success. Store employees, who interact directly with countless customers daily, are at the forefront. These associates are stationed in thousands of locations—from metropolitan areas to small towns—each adapting to the specific needs and tastes of the surrounding area.

The company’s operations extend to its network of distribution hubs, which include warehouses and fulfillment centers that are essential to its seamless omnichannel retail strategy. These facilities operate efficiently thanks to the skilled warehouse staff, logistics experts, and supply chain managers who ensure timely product availability and order fulfillment. Target’s commitment to automation and technology enhances these operations, allowing for more efficient workflows and quicker service to meet modern consumers’ expectations.

On the corporate side, Target employs a diverse group of professionals in finance, marketing, human resources, and technology. These teams are pivotal in providing the necessary support and strategic guidance that fuel innovation and direct the company’s expansion. Target’s corporate environment promotes teamwork, creativity, and flexibility, creating a dynamic where ideas flourish and employees are motivated to push the company forward amidst a changing retail environment.

A key feature of Target’s approach to workforce management is its focus on employee development and empowerment. Through initiatives like Target University, the company offers numerous training and development programs that help employees enhance their skills and careers. Moreover, Target provides substantial employee benefits including health insurance, retirement plans, and tuition assistance, underlining its commitment to the personal and professional growth of its team.

Despite these efforts, Target faces challenges typical of the retail sector, such as labor costs, recruitment competition, and changing consumer preferences. In a period dominated by digital transformation and market shifts, Target continuously refines its workforce strategies to maintain flexibility and responsiveness to customer demands.

Moving forward, the robustness of Target’s workforce will remain pivotal to its success as it tackles the complexities of a competitive retail market. By maintaining a focus on diversity, investing in employee growth, and nurturing a culture of innovation, Target is poised to sustain its growth and deliver ongoing value to customers, investors, and the community. As the retail sector progresses, the resilience and vigor of Target’s workforce will continue to be essential to its enduring attractiveness and market competitiveness.

Cite this page

The Workforce of Target Corporation: Analyzing Employee Numbers and Distribution Across Operations. (2024, May 12). Retrieved from https://papersowl.com/examples/the-workforce-of-target-corporation-analyzing-employee-numbers-and-distribution-across-operations/

"The Workforce of Target Corporation: Analyzing Employee Numbers and Distribution Across Operations." PapersOwl.com , 12 May 2024, https://papersowl.com/examples/the-workforce-of-target-corporation-analyzing-employee-numbers-and-distribution-across-operations/

PapersOwl.com. (2024). The Workforce of Target Corporation: Analyzing Employee Numbers and Distribution Across Operations . [Online]. Available at: https://papersowl.com/examples/the-workforce-of-target-corporation-analyzing-employee-numbers-and-distribution-across-operations/ [Accessed: 15 May. 2024]

"The Workforce of Target Corporation: Analyzing Employee Numbers and Distribution Across Operations." PapersOwl.com, May 12, 2024. Accessed May 15, 2024. https://papersowl.com/examples/the-workforce-of-target-corporation-analyzing-employee-numbers-and-distribution-across-operations/

"The Workforce of Target Corporation: Analyzing Employee Numbers and Distribution Across Operations," PapersOwl.com , 12-May-2024. [Online]. Available: https://papersowl.com/examples/the-workforce-of-target-corporation-analyzing-employee-numbers-and-distribution-across-operations/. [Accessed: 15-May-2024]

PapersOwl.com. (2024). The Workforce of Target Corporation: Analyzing Employee Numbers and Distribution Across Operations . [Online]. Available at: https://papersowl.com/examples/the-workforce-of-target-corporation-analyzing-employee-numbers-and-distribution-across-operations/ [Accessed: 15-May-2024]

Don't let plagiarism ruin your grade

Hire a writer to get a unique paper crafted to your needs.

Our writers will help you fix any mistakes and get an A+!

Please check your inbox.

You can order an original essay written according to your instructions.

Trusted by over 1 million students worldwide

1. Tell Us Your Requirements

2. Pick your perfect writer

3. Get Your Paper and Pay

Hi! I'm Amy, your personal assistant!

Don't know where to start? Give me your paper requirements and I connect you to an academic expert.

short deadlines

100% Plagiarism-Free

Certified writers