A Method of Detecting Network Anomalies in Cyclic Traffic

被引：0

作者：

Harada, Shigeaki ^{[1
]}

Kawahara, Ryoichi ^{[1
]}

Mori, Tatsuya ^{[1
]}

Kamiyama, Noriaki ^{[1
]}

Hasegawa, Haruhisa ^{[1
]}

Yoshino, Hideaki ^{[1
]}

机构：

[1] NTT Corp, NTT Serv Integrat Labs, Musashino, Tokyo 1808585, Japan

来源：

GLOBECOM 2008 - 2008 IEEE GLOBAL TELECOMMUNICATIONS CONFERENCE | 2008年

关键词：

D O I：

10.1109/GLOCOM.2008.ECP.396

中图分类号：

TM [电工技术]; TN [电子技术、通信技术];

学科分类号：

0808 ; 0809 ;

摘要：

We present a method of detecting network anomalies, such as DDoS (distributed denial of service) attacks and flash crowds, automatically in real time. We evaluated this method using measured traffic data and found that it successfully differentiated suspicious traffic. In this paper, we focus on cyclic traffic, which has a daily and/or weekly cycle, and show that the differentiation accuracy is improved by utilizing such a cyclic tendency in anomaly detection. Our method differentiates suspicious traffic that has different statistical characteristics from normal traffic. At the same time, it learns about cyclic large-volume traffic, such as traffic for network operations, and finally considers it to be legitimate.

引用

页数：5

共 50 条

[1] A Method for Detecting Wide-scale Network Traffic Anomalies
Wang Minghua(National Computer Network Emergency Response Technical Team/Coordination Center(CNCERT/CC)
ZTE Communications, 2007, (04) : 19 - 23
[2] Detecting Anomalies in Network Traffic Using the Method of Remaining Elements
Velarde-Alvarado, P.
Vargas-Rosales, C.
Torres-Roman, D.
Martinez-Heffera, A.
IEEE COMMUNICATIONS LETTERS, 2009, 13 (06) : 462 - 462
[3] A new statistical method for detecting network anomalies in TCP traffic
Callegari, Christian
Vaton, Sandrine
Pagano, Michele
EUROPEAN TRANSACTIONS ON TELECOMMUNICATIONS, 2010, 21 (07): : 575 - 588
[4] A Traffic Decomposition and Prediction Method for Detecting and Tracing Network-Wide Anomalies
Du, Ping
Abe, Shunji
Ji, Yusheng
Sato, Seisho
Ishiguro, Makio
IEICE TRANSACTIONS ON INFORMATION AND SYSTEMS, 2009, E92D (05) : 929 - 936
[5] ODC: a method for online detecting & classifying network-wide traffic anomalies
Qian, Ye-Kui
Chen, Ming
Hao, Qiang
Liu, Feng-Rong
Shang, Wen-Zhong
Tongxin Xuebao/Journal on Communications, 2011, 32 (01): : 111 - 120
[6] A divergence-measure based classification method for detecting anomalies in network traffic
Balagani, Kiran S.
Phoba, Vir V.
Kuchimanchi, Gopi K.
2007 IEEE INTERNATIONAL CONFERENCE ON NETWORKING, SENSING, AND CONTROL, VOLS 1 AND 2, 2007, : 374 - 379
[7] Comparison of Supervised and Unsupervised Learning for Detecting Anomalies in Network Traffic
McAndrew, Robert
Hayne, Stephen
Wang, Haonan
PROCEEDINGS OF THE 52ND ANNUAL HAWAII INTERNATIONAL CONFERENCE ON SYSTEM SCIENCES, 2019, : 7136 - 7145
[8] Improvement the schemes and models of detecting network traffic anomalies on computer systems
Yusupdjanovich, Yusupov Sabirjan
Rajaboevich, Gulomov Sherzod
2020 IEEE 14TH INTERNATIONAL CONFERENCE ON APPLICATION OF INFORMATION AND COMMUNICATION TECHNOLOGIES (AICT2020), 2020,
[9] The effectively method of detecting network traffic anomaly
Cheng Juan
Qian Jin
Qian Ke
ADVANCES IN APPLIED SCIENCE AND INDUSTRIAL TECHNOLOGY, PTS 1 AND 2, 2013, 798-799 : 411 - 414
[10] Detecting Network-wide Traffic Anomalies based on Spatial HMM
Li, Min
Yu, Shunzheng
He, Li
2008 IFIP INTERNATIONAL CONFERENCE ON NETWORK AND PARALLEL COMPUTING, PROCEEDINGS, 2008, : 198 - 203

← 1 2 3 4 5 →