Real-time behaviour profiling for network monitoring

被引：3

作者：

Xu, Kuai ^{[1
]}

Wang, Feng ^{[1
]}

Bhattacharyya, Supratik ^{[2
]}

Zhang, Zhi-Li ^{[3
]}

机构：

[1] Arizona State Univ, 4701 W Thunderbird Rd, Glendale, AZ 85306 USA

[2] SnapTell Inc, Palo Alto, CA 94306 USA

[3] Univ Minnesota, Dept Comp Sci & Engn, Minneapolis, MN 55416 USA

来源：

INTERNATIONAL JOURNAL OF INTERNET PROTOCOL TECHNOLOGY | 2010年 / 5卷 / 1-2期

基金：

美国国家科学基金会;

关键词：

real-time traffic monitoring; behaviour profiling; profiling-aware filtering algorithms;

D O I：

10.1504/IJIPT.2010.032616

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This paper presents the design and implementation of a real-time behaviour profiling system for internet links. The system uses flow-level information, and applies data mining and information-theoretic techniques to automatically discover significant events based on communication patterns. We demonstrate the operational feasibility of the system by implementing it and performing benchmarking of CPU and memory costs using packet traces from backbone links. To improve the robustness of this system against sudden traffic surges, we propose a novel filtering algorithm. The proposed algorithm successfully reduces the CPU and memory cost while maintaining high profiling accuracy. Finally, we devise and evaluate simple yet effective blocking strategies to reduce prevalent exploit traffic, and build a simple event analysis engine to generate ACL rules for filtering unwanted traffic.

引用

页码：65 / 80

页数：16

共 50 条

[1] Accelerated Real-time Network Monitoring and Profiling at Scale using OSU INAM
Kousha, P.
Raj, Kamal S. D.
Subramoni, H.
Panda, D. K.
Na, H.
Dockendorf, T.
Tomko, K.
[J]. PRACTICE AND EXPERIENCE IN ADVANCED RESEARCH COMPUTING 2020, PEARC 2020, 2020, : 215 - 223
[2] A real-time network traffic profiling system
Xu, Kuai
Wang, Feng
Bhattacharyya, Supratik
Zhang, Zhi-Li
[J]. 37TH ANNUAL IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS, PROCEEDINGS, 2007, : 595 - +
[3] Real-time multicast network monitoring
Kim, Joohee
Kim, Bongki
Yoo, Jaehyoung
[J]. MANAGING NEXT GENERATION NETWORKS AND SERVICES, PROCEEDINGS, 2007, 4773 : 185 - +
[4] Real-time monitoring and chemical profiling of a cultivation process
Mortensen, Peter P.
Bro, Rasmus
[J]. CHEMOMETRICS AND INTELLIGENT LABORATORY SYSTEMS, 2006, 84 (1-2) : 106 - 113
[5] A novel method for monitoring real-time curing behaviour
Schmidt, Michael
Knorz, Markus
Wilmes, Barbara
[J]. WOOD SCIENCE AND TECHNOLOGY, 2010, 44 (03) : 407 - 420
[6] A novel method for monitoring real-time curing behaviour
Michael Schmidt
Markus Knorz
Barbara Wilmes
[J]. Wood Science and Technology, 2010, 44 : 407 - 420
[7] REAL-TIME NETWORK SECURITY MONITORING, ASSESSMENT AND OPTIMIZATION
WU, FF
[J]. INTERNATIONAL JOURNAL OF ELECTRICAL POWER & ENERGY SYSTEMS, 1988, 10 (02) : 83 - 100
[8] Design and implementation of a real-time Coastal Monitoring Network
Herrington, TO
Rankin, KL
Bruno, MS
[J]. FLORIDA MODEL "THE NATION'S FIRST COMPREHENSIVE STATEWIDE BEACH MANAGEMENT PROGRAM", 1999, : 95 - 111
[9] A real-time wireless sensor network for temperature monitoring
Flammini, A.
Marioli, D.
Sisinni, E.
Taroni, A.
[J]. 2007 IEEE INTERNATIONAL SYMPOSIUM ON INDUSTRIAL ELECTRONICS, PROCEEDINGS, VOLS 1-8, 2007, : 1916 - 1920
[10] A real-time SIP network simulation and monitoring system
Yildiz, Cagatay
Kurt, Baris
Ceritli, Taha Yusuf
Sankur, Bulent
Cemgil, Ali Taylan
[J]. SOFTWAREX, 2018, 8 : 21 - 25

← 1 2 3 4 5 →