Arshi Agrawal scite author profile

User Profiling in GUI based Windows Systems for Intrusion Detection by Arshi Agrawal Intrusion detection is the process of identifying any unauthorized access to a system. This process inspects user behavior to identify any possible attack or intrusion. There exists two type of intrusion detection systems (IDSs): signature-based IDS and anomaly-based IDS. This project concentrates on anomaly-based intrusion detection technique. This technique is based on the deviation of intruder's actions from the authenticated user's actions. Much previous research has focused on the deviation of command line input in UNIX systems. However, these techniques fail to detect attacks on modern GUIbased systems, where typical user activities include mouse movements and keystrokes. Our project aims to create a dataset suitable for testing intrusion detection strategies on GUI-based operating systems. We have developed an event logging tool to capture GUI-based user data on Windows systems. We have collected a large dataset which we analyze using a intrusion detection strategy based on hidden Markov models (HMM). ACKNOWLEDGMENTS I would like to thank Dr. Mark Stamp for his constant support, guidance and encouragement provided throughout the project. His patience and thoughtfulness was one of the biggest supporting factor for me in this project. I would also like to express my sincere gratitude to my committee members Dr. Chris Pollett and Dr. Sami Khuri for their valuable time and guidance. I am grateful to my friends and family for helping me in collecting a large amount of user data and spending their time and energy in making my project successful. Finally, I would like to thank my husband Mr. Arun Agrawal for his encouragement and unending patience throughout my Masters. v

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Arshi Agrawal

Masquerade detection on GUI-based Windows systems

User Profiling in GUI based Windows Systems for Intrusion Detection

Contact Info

Product

Resources

About