USING THE METHODS AND ALGORITHMS FOR DATA ANALYSIS AND MACHINE LEARNING IN UEBA/DSS TO SUPPORT MANAGEMENT DECISION-MAKING
P.A. Savenkov, P.S. Tregubov
The aim of this study is to develop mathematical and software for detecting abnormal user behavior based on an analysis of their behavioral biometric characteristics to create new ways to provide analytical data to the analyzing service with a description of why the identified actions are considered abnormal. The subject of the study is the machine learning methods used in UBA / UEBA (User Behavioral Analytics / User and Entity Behavioral Analytics), DLP (Data Leak Prevention), SIEM (Security information and event management) systems. Object of study – UBA / UEBA, DLP, SIEM systems. This article provides an overview of the applicability of machine learning methods in intelligent UEBA / DSS systems. One of the significant problems in intelligent UEBA / DSS systems is obtaining useful information from a large amount of unstructured, inconsistent data. The methods and algorithms of intelligent data processing and machine learning used in UEBA / DSS systems make it possible to solve data analysis problems of various kinds. The application of machine learning methods in the implementation of a mobile UEBA / DSS system is proposed. This will allow to achieve high quality data analysis and find complex dependencies in them. During the study, a list of the most significant factors submitted to the input of the analyzing methods was formed. The application of machine learning methods in UEBA / DSS systems will allow you to make informed management decisions and reduce the time to obtain useful information.
Keywords: big Data, data science, software, machine learning information system, UEBA, DSS.