Introduction to Security Onion

Security Onion is a Network Security Manager (NSM) platform that provides multiple Intrusion Detection Systems (IDS) including Host IDS (HIDS) and Network IDS (NIDS). Many types of data can be acquired using Security Onion for analysis. This includes data related to: Host, Network, Session, Asset, Alert and Protocols. Security Onion can be implemented as a standalone deployment with server and sensor included or with a master server and multiple sensors allowing for the system to be scaled as required. Many interfaces and tools are available for management of the system and analysis of data such as Sguil, Snorby, Squert and Enterprise Log Search and Archive (ELSA). These interfaces can be used for analysis of alerts and captured events and then can be further exported for analysis in Network Forensic Analysis Tools (NFAT) such as NetworkMiner, CapME or Xplico. The Security Onion platform also provides various methods of management such as Secure SHell (SSH) for management of server and sensors and Web client remote access. All of this with the ability to replay and analyse example malicious traffic makes the Security Onion a suitable low cost alternative for Network Security Management. In this paper, we have a feature and functionality review for the Security Onion in terms of: types of data, configuration, interface, tools and system management

Mobile WiMAX system performance – simulated versus experimental results

This paper addresses the downlink performance of mobile WiMAX operating at 2.3GHz in an urban environment. The analysis includes a comparison of simulated and experimental results. Simulated packet error rate (PER) versus Signal to Noise Ratio (SNR) graphs are generated on a per link-speed basis using a fully compliant 512 carrier mobile WiMAX simulator. Experimental data is gathered using a carrier-class basestation, a mobile-WiMAX enabled laptop, and a suite of application layer logging software. An H264 AVC encoder and IP packetisation unit is used to transmit video to a mobile client. Results show strong agreement in terms of simulated and captured PER. Using this data, the downlink operating range is evaluated as a function of the Effective Isotropic Radiated Power (EIRP) and path loss exponent. Results indicate that at low EIRP (32 dBm) the expected outdoor operating range is around 200-400m. Applying the UK OFCOM regulations for licensed operation in the 2.5GHz band, downlink operation in excess of 2km can be achieved

Feasibility study of a long duration balloon flight with NASA/GSFC and Soviet Space Agency Gamma Ray Spectrometers

A feasibility study of conducting a joint NASA/GSFC and Soviet Space Agency long duration balloon flight at the Antarctic in Jan. 1993 is reported. The objective of the mission is the verification and calibration of gamma ray and neutron remote sensing instruments which can be used to obtain geochemical maps of the surface of planetary bodies. The gamma ray instruments in question are the GRAD and the Soviet Phobos prototype. The neutron detectors are supplied by Los Alamos National Laboratory and the Soviet Phobos prototype. These are to be carried aboard a gondola that supplies the data and supplies the power for the period of up to two weeks

Detailed Diagnosis of Performance Anomalies in Sensornets

We address the problem of analysing performance anomalies in sensor networks. In this paper, we propose an approach that uses the local flash storage of the motes for logging system data, in combination with online statistical analysis. Our results show not only that this is a feasible method but that the overhead is significantly lower than that of communication-centric methods, and that interesting patterns can be revealed when calculating the correlation of large data sets of separate event types.GINSENGCONE

Wireless magnetic sensor network for road traffic monitoring and vehicle classification

Efficiency of transportation of people and goods is playing a vital role in economic growth. A key component for enabling effective planning of transportation networks is the deployment and operation of autonomous monitoring and traffic analysis tools. For that reason, such systems have been developed to register and classify road traffic usage. In this paper, we propose a novel system for road traffic monitoring and classification based on highly energy efficient wireless magnetic sensor networks. We develop novel algorithms for vehicle speed and length estimation and vehicle classification that use multiple magnetic sensors. We also demonstrate that, using such a low-cost system with simplified installation and maintenance compared to current solutions, it is possible to achieve highly accurate estimation and a high rate of positive vehicle classification

Guifi.net: characterization, data collection and selfmanagement of community

In this project, we are going to present an E2E (end to end) solution for the principal problems that normally impact the community networks and especially Guifinet. To introduce our solution, we were investigating how the Guifinet works internally (its network hierarchy, equipment used, IP configuration and also its financial system) and also how wireless technology works and their limitations. Once we analysed and detected all the potential issues, we performed a routing performance and QoS (quality or service) simulation in order to test two experimental protocol called BATMAN and OLSR to find the most suitable routing protocol for our approach. And finally, we presented our new Guifinet network concept basing in MPLS over OLSR

Towards radio access network intelligence in mobile communication systems beyond 5G

This final degree thesis is part of a project of the Mobile Communications Research Group (GRCM) of the Polytechnic University of Catalonia. The project is focused on the development of operations and management mechanisms and algorithms that with the use of artificial intelligence and machine learning in the 5G era and the next generations, integrate user equipment as part of the intelligence of the end-to-end connected network. This would materialise data analytics solutions that would not need to expose the network to a large amount of raw data collected by UEs. In this context, the aim of this thesis is to create a local network in order to test the different algorithms that lead to the intelligence of the radio access network in an environment beyond 5G. This includes configuring and analysing the performance of the assembled network as well as understanding the operation of each of its component parts.Esta tesis de final de grado forma parte de un proyecto del Grupo de Investigación en Comunicaciones Móviles (GRCM) de la Universidad Politécnica de Cataluña. El proyecto está enfocado al desarrollo de mecanismos y algoritmos de mantenimiento y gestión que con el uso de la inteligencia artificial y el aprendizaje autónomo en la era del 5G y las siguientes generaciones, integre los equipos de usuario como parte de la inteligencia de la red conectada de extremo a extremo. De esta manera se materializaría soluciones de análisis de datos que no necesitarían exponer a la red a una gran cantidad de datos recopiladas en bruto por los equipos de usuario. En este contexto, el objetivo de esta tesis en crear una red local para poder testear los diferentes algoritmos que lleven a la inteligencia de la red de acceso en un entorno más allá del 5G. Esto incluye configurar y analizar las prestaciones de la red montada además de entender el funcionamiento de cada una de las partes que la componen.Aquesta tesi de final de grau forma part d'un projecte del Grup de Recerca en Comunicacions Mòbils (GRCM) de la Universitat Politècnica de Catalunya. El projecte està enfocat al desenvolupament de mecanismes i algoritmes d'operació i gestió que amb l'ús de la intel·ligència artificial i l'aprenentatge autònom a l'era del 5G i les següents generacions, integri els equips d'usuari com a part de la intel·ligència de la xarxa connectada d'extrem a extrem. D' aquesta manera es materialitzaria solucions d'anàlisis de dades que no necessitarien exposar a la xarxa a una gran quantitat de dades recopilades en brut pels equips d'usuari. En aquest context, l'objectiu d'aquesta tesis es crear una xarxa local per a poder testejar els diferents algoritmes que portin a la intel·ligència de la xarxa d'accés en un entorn més enllà del 5G. Això inclou configurar i analitzar les prestacions de la xarxa muntada a més d'entendre el funcionament de cadascuna de les parts que la composen