A method of detecting network anomalies in cyclic traffic

Shigeaki Harada, Ryoichi Kawahara, Tatsuya Mori, Noriaki Kamiyama, Haruhisa Hasegawa, Hideaki Yoshino

研究成果: Conference contribution

2 被引用数 (Scopus)

抄録

We present a method of detecting network anomalies, such as DDoS (distributed denial of service) attacks and flash crowds, automatically in real time. We evaluated this method using measured traffic data and found that it successfully differentiated suspicious traffic. In this paper, we focus on cyclic traffic, which has a daily and/or weekly cycle, and show that the differentiation accuracy is improved by utilizing such a cyclic tendency in anomaly detection. Our method differentiates suspicious traffic that has different statistical characteristics from normal traffic. At the same time, it learns about cyclic large- volume traffic, such as traffic for network operations, and finally considers it to be legitimate.

本文言語English
ホスト出版物のタイトル2008 IEEE Global Telecommunications Conference, GLOBECOM 2008
ページ2057-2061
ページ数5
DOI
出版ステータスPublished - 2008 12 1
外部発表はい
イベント2008 IEEE Global Telecommunications Conference, GLOBECOM 2008 - New Orleans, LA, United States
継続期間: 2008 11 302008 12 4

出版物シリーズ

名前GLOBECOM - IEEE Global Telecommunications Conference

Conference

Conference2008 IEEE Global Telecommunications Conference, GLOBECOM 2008
国/地域United States
CityNew Orleans, LA
Period08/11/3008/12/4

ASJC Scopus subject areas

  • 電子工学および電気工学

フィンガープリント

「A method of detecting network anomalies in cyclic traffic」の研究トピックを掘り下げます。これらがまとまってユニークなフィンガープリントを構成します。

引用スタイル