The role of User Entity Behavior Analytics to detect network attacks in real time

Project title:

The role of User Entity Behavior Analytics to detect network attacks in real time

Project outline:

Today’s security threat landscape is polymorphic in nature - constantly changing and making it nearly impossible to detect with traditional security approaches. We urgently need a game plan to address next generation threats. This is only possible through leveraging the domain expertise -collaboration and knowledge sharing. Threat information from endpoints combined with input from security vendors will provide valuable real-time insights into threats and greater visibility into the behaviour of an attack. Using UEBA (User Entity Behavior Analytics) to detect network attacks in real time is one way of addressing this. The UEBA includes monitoring of all data on a network to guard against security attacks along with monitoring of network activities for trends and patterns. It predicts user behaviour and patterns, manages and analyses the flow of people, business and assets from various data sources and flow of information to find trends. The main aim of this research is to understand the behaviour analytics approach and evaluate its appropriation to mitigate network security threats.

Project supervision team:

Madhu Chetty- Principal
Feng Xia – Associate
Gour Karmakar – Associate