NCI WEBSITE
NORMA eResearch @NCI Library

Securing Data with User and Entity Behaviour Analysis (UEBA) Approach Using Machine Learning Models

Tools

-, Sumeet (2022) Securing Data with User and Entity Behaviour Analysis (UEBA) Approach Using Machine Learning Models. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
 PDF (Master of Science)
Download (1MB) | Preview
[thumbnail of Configuration manual]
Preview
 PDF (Configuration manual)
Download (630kB) | Preview

Abstract

This project introduces User Entity and Behavior Analysis (UEBA) implemented using machine learning classification models to monitor the activities performed by the users like mouseover and mouseout and alert strange behavior for rectification or threat mitigation. The logs are generated based on these event activities, a baseline is then created for the usual and unusual events and detection is made by training the model and evaluating the results obtained from machine learning algorithms like XGBoost and Random Forest classification methods. User behavior anomalies are used to train the machine learning models and the results are used to prevent internal breaches and attacks that can compromise critical data. This project will find its application in organizations using critical and sensitive data to prevent leakage or exposure to vulnerabilities. The dataset for this project has been picked from Mendeley Data and Python libraries are used for this implementation. The accuracy for the implementation is observed to be 89.8% and 90% respectively for Random Forest and XGBoost.

Item Type: Thesis (Masters)
Uncontrolled Keywords: UEBA; Data Loss Prevention (DLP); Security Information and Event Management (SIEM); Exploratory Data Analysis (EDA)
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Q Science > Q Science (General) > Self-organizing systems. Conscious automata > Machine learning
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Tamara Malone
Date Deposited: 05 Jan 2023 16:17
Last Modified: 07 Mar 2023 12:07
URI: https://norma.ncirl.ie/id/eprint/6065

Actions (login required)

View Item View Item