A divergence-measure based classification method for detecting anomalies in network traffic

被引:0
|
作者
Balagani, Kiran S. [1 ]
Phoba, Vir V. [1 ]
Kuchimanchi, Gopi K. [1 ]
机构
[1] Louisiana Tech Univ, CAM Program, Ruston, LA 71272 USA
来源
2007 IEEE INTERNATIONAL CONFERENCE ON NETWORKING, SENSING, AND CONTROL, VOLS 1 AND 2 | 2007年
关键词
D O I
10.1109/ICNSC.2007.372808
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
We present 'D-CAD,' a novel divergence-measure based classification method for anomaly detection in network traffic. The D-CAD method identifies anomalies by performing classification on features drawn from software sensors that monitor network traffic. We compare the performance of the D-C-A,D method with two classifier based anomaly detection methods implemented using supervised Bayesian estimation and supervised maximum-likelihood estimation. Results show that the area under receiver operating characteristic curve (AUC) of the D-CAD method is as high as 0.9524, compared to an AUC value of 0.9102 of the supervised maximum-likelihood estimation based anomaly detection method and to an AUC value of 0.8887 of the supervised Bayesian estimation based anomaly detection method.
引用
收藏
页码:374 / 379
页数:6
相关论文
共 50 条
  • [1] A Method of Detecting Network Anomalies in Cyclic Traffic
    Harada, Shigeaki
    Kawahara, Ryoichi
    Mori, Tatsuya
    Kamiyama, Noriaki
    Hasegawa, Haruhisa
    Yoshino, Hideaki
    GLOBECOM 2008 - 2008 IEEE GLOBAL TELECOMMUNICATIONS CONFERENCE, 2008,
  • [2] A Method for Detecting Wide-scale Network Traffic Anomalies
    Wang Minghua(National Computer Network Emergency Response Technical Team/Coordination Center(CNCERT/CC)
    ZTE Communications, 2007, (04) : 19 - 23
  • [3] Detecting Anomalies in Network Traffic Using the Method of Remaining Elements
    Velarde-Alvarado, P.
    Vargas-Rosales, C.
    Torres-Roman, D.
    Martinez-Heffera, A.
    IEEE COMMUNICATIONS LETTERS, 2009, 13 (06) : 462 - 462
  • [4] A new statistical method for detecting network anomalies in TCP traffic
    Callegari, Christian
    Vaton, Sandrine
    Pagano, Michele
    EUROPEAN TRANSACTIONS ON TELECOMMUNICATIONS, 2010, 21 (07): : 575 - 588
  • [5] Detecting anomalies and attacks in network traffic monitoring with classification methods and XAI-based explainability
    Wawrowski, Lukasz
    Michalak, Marcin
    Bialas, Andrzej
    Kurianowicz, Rafal
    Sikora, Marek
    Uchronski, Mariusz
    Kajzer, Adrian
    KNOWLEDGE-BASED AND INTELLIGENT INFORMATION & ENGINEERING SYSTEMS (KSE 2021), 2021, 192 : 2259 - 2268
  • [6] Automated Classification of Network Traffic Anomalies
    Fernandes, Guilherme
    Owezarski, Philippe
    SECURITY AND PRIVACY IN COMMUNICATION NETWORKS, 2009, 19 : 91 - 100
  • [7] Detecting Network-wide Traffic Anomalies based on Spatial HMM
    Li, Min
    Yu, Shunzheng
    He, Li
    2008 IFIP INTERNATIONAL CONFERENCE ON NETWORK AND PARALLEL COMPUTING, PROCEEDINGS, 2008, : 198 - 203
  • [8] A Traffic Decomposition and Prediction Method for Detecting and Tracing Network-Wide Anomalies
    Du, Ping
    Abe, Shunji
    Ji, Yusheng
    Sato, Seisho
    Ishiguro, Makio
    IEICE TRANSACTIONS ON INFORMATION AND SYSTEMS, 2009, E92D (05) : 929 - 936
  • [9] ODC: a method for online detecting & classifying network-wide traffic anomalies
    Qian, Ye-Kui
    Chen, Ming
    Hao, Qiang
    Liu, Feng-Rong
    Shang, Wen-Zhong
    Tongxin Xuebao/Journal on Communications, 2011, 32 (01): : 111 - 120
  • [10] A Classification Approach Based on Divergence for Network Traffic in Presence of Concept Drift
    Cheng G.
    Qian D.
    Guo J.
    Shi H.
    Wu H.
    Zhao Y.
    Jisuanji Yanjiu yu Fazhan/Computer Research and Development, 2020, 57 (12): : 2673 - 2682
12345