Upload
ibrahim-mosaad
View
123
Download
0
Tags:
Embed Size (px)
Citation preview
Outline• Introduction
o Incident handling
o News
o The Spark
• Projecto Goal
o How
o Extendibility
o Performance
o Simplicity
• Conclusiono Results
o Challenges
o Futuristic Vision
IntroductionIncident Handling
“Computer security incident management involves
the monitoring and detection of security events on a
computer or computer network, and the execution of
proper responses to those events.” - "ISO
17799|ISO/IEC 17799:2005(E)"
Idea
“A live channel that monitors, analyzes and
notifies the posts of the cyber attacks on pasting
websites“
Performance• Pattern matching
o Regex matching
o Knuth–Morris–Pratt algorithm O(N+M)
• 50000 chars
• Built in method: 0.000952557316432 sec
• KMP: 9.10658855941e-07
• Threading
Conclusion• To-Do
o Upgrade the database for archiving
o Correlating different pasting websites together
o Why storing everything?
o Availability
o Notifying with emails
• Vision