New Behavioral Data System Could Do Double Duty

May 7, 2010

( -- A new behavioral data analysis system under development at UT Dallas focuses on identifying potential Internet threats, but it comes with a nice bonus.

Researchers say the basic idea behind the system - detecting worrisome deviations from normal activity and quickly providing an alert so that immediate measures can be taken - could have application in areas far beyond the Web, such as health-care monitoring.

“We proposed a novel platform that thoroughly analyzes network traffic behavior to identify potential internet threats,” said Dr. Mehrdad Nourani, an associate professor of in the University’s Erik Jonsson School of Engineering and . “But it could have much broader application.”

The technology uses two sub-systems functioning in parallel to achieve both high speed and efficient use of memory, thus ensuring fast results and optimal use of resources. The system builds a bell-shaped curve depicting normal traffic/behavior and can then achieve practically zero false positives and false negatives when identifying abnormalities outside the curve.

The happy result is that although the system is designed to identify abnormalities that indicate suspicious interactions among users or the presence of malicious data such as worms or viruses, the abnormality might just as well be health-related data indicating an issue such as heart arrhythmia, sleep apnea or epileptic seizure.

Titled “A Behavioral Analysis Engine for Network Traffic,” the two-year $100,000 project is funded by the Cisco University Research Program Fund, a corporate advised fund of the Community Foundation.

Explore further: F-Secure buys out ROMmon

Related Stories

F-Secure buys out ROMmon

November 30, 2005

F-Secure launched Wednesday a new system to protect Internet service providers from network abuse by buying out ROMmon.

The phony goat gets the worm

March 28, 2006

IBM researchers have designed a new way to detect and thwart attacks on computer networks. Code named "Billy Goat," the intrusion detection tool provides both early detection of worm attacks and fewer false alarms than other ...

Silicon Valley cuts the Internet cord

September 7, 2006

Some 2.4 million residents of California's Silicon Valley will have free broadband wireless Internet access when a new network goes on line. The system will be put together by Silicon Valley Metro Connect, a collaboration ...

Cisco releases Web security app for iPhone

November 20, 2009

Cisco on Friday announced the release of a free iPhone application for anyone who wants to stay on top of the latest trojans, worms, or other threats marauding on the Internet.

Improving network firewalls

April 16, 2010

A firewall is the safety barrier between a computer network and the outside world. Individuals, companies and large organizations alike rely on a firewall being robust enough to fend off hackers attempting to break into a ...

Recommended for you

AI machine achieves IQ test score of young child

October 6, 2015

Some people might find it enough reason to worry; others, enough reason to be upbeat about what we can achieve in computer science; all await the next chapters in artificial intelligence to see what more a machine can do ...

Dutch create world's largest man-made wave

October 5, 2015

In a country where most people live below sea level, studying the oceans is a matter of survival. Now Dutch scientists have created the world's biggest man-made wave in a bid to prepare for the worst.


Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.