A network-wide traffic anomaly detection method based on HSMM

被引:2
|
作者
Min, Li [1 ]
Shun-Zheng, Yu [2 ]
机构
[1] Zhongshan Univ, Dept Elect & Commun Engn, Guangzhou 510275, Peoples R China
[2] Sun Yat Sen Univ, Dept Elect & Commun Engn, Guangzhou 510275, Guangdong, Peoples R China
来源
2006 INTERNATIONAL CONFERENCE ON COMMUNICATIONS, CIRCUITS AND SYSTEMS PROCEEDINGS, VOLS 1-4: VOL 1: SIGNAL PROCESSING | 2006年
基金
中国国家自然科学基金;
关键词
D O I
10.1109/ICCCAS.2006.284987
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Hidden semi-Markov Model (HsMM) has been well studied and widely applied to many areas. The advantage of using an HsMM is its efficient forward-backward algorithm for estimating model parameters to best account for an observed sequence. In this paper, we propose an HsMM to model the distribution of network-wide traffic and use an observation window to distinguish DoS flooding attacks mixed within the normal background traffic. Several experiments are conducted to validate our method.
引用
收藏
页码:1636 / +
页数:2
相关论文
共 50 条
  • [1] A transform domain-based anomaly detection approach to network-wide traffic
    Jiang, Dingde
    Xu, Zhengzheng
    Zhang, Peng
    Zhu, Ting
    JOURNAL OF NETWORK AND COMPUTER APPLICATIONS, 2014, 40 : 292 - 306
  • [2] The network-wide multi-traffic correlative anomaly detection
    Key Laboratory for Broadband Optical Fiber Transmission and Communication Networks, University of Electronics Science and Technology of China, Chengdu 610054, China
    Dianzi Keji Diaxue Xuebao, 2008, 6 (823-827):
  • [3] Sketch-based Streaming PCA Algorithm for Network-wide Traffic Anomaly Detection
    Liu, Yang
    Zhang, Linfeng
    Guan, Yong
    2010 INTERNATIONAL CONFERENCE ON DISTRIBUTED COMPUTING SYSTEMS ICDCS 2010, 2010,
  • [4] Network-Wide Traffic Anomaly Detection and Localization Based on Robust Multivariate Probabilistic Calibration Model
    Li, Yuchong
    Luo, Xingguo
    Qian, Yekui
    Zhao, Xin
    MATHEMATICAL PROBLEMS IN ENGINEERING, 2015, 2015
  • [5] A multi-step outlier-based anomaly detection approach to network-wide traffic
    Bhuyan, Monowar H.
    Bhattacharyya, D. K.
    Kalita, J. K.
    INFORMATION SCIENCES, 2016, 348 : 243 - 271
  • [6] Network-Wide Anomaly Detection Based on Router Connection Relationships
    Zhou, Yingjie
    Hu, Guangmin
    IEICE TRANSACTIONS ON COMMUNICATIONS, 2011, E94B (08) : 2239 - 2242
  • [7] NMF-NAD: Detecting network-wide traffic anomaly based on NMF
    Wei, Xiang-Lin
    Chen, Ming
    Zhang, Guo-Min
    Huang, Jian-Jun
    Tongxin Xuebao/Journal on Communications, 2012, 33 (04): : 54 - 61
  • [8] Detecting Distributed Network Traffic Anomaly with Network-Wide Correlation Analysis
    Li Zonglin
    Hu Guangmin
    Yao Xingmiao
    Yang Dan
    EURASIP Journal on Advances in Signal Processing, 2009
  • [9] Detecting Distributed Network Traffic Anomaly with Network-Wide Correlation Analysis
    Li Zonglin
    Hu Guangmin
    Yao Xingmiao
    Yang Dan
    EURASIP JOURNAL ON ADVANCES IN SIGNAL PROCESSING, 2009,
  • [10] RMPCM: network-wide anomaly detection method based on robust multivariate probabilistic calibration model
    National Digital Switching System Engineering and Technological Research Center, Zhengzhou
    450002, China
    不详
    050000, China
    不详
    450052, China
    Tongxin Xuebao, 11
12345