Improving network anomaly detection via selective flow-based sampling
作者: G. Androulidakis , S. Papavassiliou
关键词: Simulation 、 Internet traffic 、 Sampling (statistics) 、 Real-time computing 、 Flow (mathematics) 、 Scalability 、 Anomaly detection 、 Computer science 、 Process (computing) 、 Computer simulation 、 Component (UML)
摘要: … other network management processes. This is mainly due to the fact that anomaly detection may operate under abnormal conditions/attacks, while by its nature involves simultaneously …
core.ac.uk
aip.org
sci-hub.se 参考文章(17)
Tao Peng, Christopher Leckie, Kotagiri Ramamohanarao, Proactively detecting distributed denial of service attacks using source IP address monitoring Lecture Notes in Computer Science. pp. 771- 782 ,(2004) , 10.1007/978-3-540-24693-0_63
Baek-Young Choi, Jaesung Park, Zhi-Li Zhang, Adaptive packet sampling for accurate and scalable flow measurement global communications conference. ,vol. 3, pp. 1448- 1452 ,(2004) , 10.1109/GLOCOM.2004.1378222
Zhiqiang Gao, Nirwan Ansari, A practical and robust inter-domain marking scheme for IP traceback Computer Networks. ,vol. 51, pp. 732- 750 ,(2007) , 10.1016/J.COMNET.2006.06.003
Cristian Estan, George Varghese, New directions in traffic measurement and accounting Proceedings of the First ACM SIGCOMM Workshop on Internet Measurement - IMW '01. ,vol. 32, pp. 323- 336 ,(2001) , 10.1145/505202.505212
Andrey Belenky, Nirwan Ansari, On deterministic packet marking Computer Networks. ,vol. 51, pp. 2677- 2700 ,(2007) , 10.1016/J.COMNET.2006.11.020
T. McGregor, H.-W. Braun, J. Brown, The NLANR Network Analysis Infrastructure IEEE Communications Magazine. ,vol. 38, pp. 122- 128 ,(2000) , 10.1109/35.841836
A. Belenky, N. Ansari, On IP traceback IEEE Communications Magazine. ,vol. 41, pp. 142- 153 ,(2003) , 10.1109/MCOM.2003.1215651
Wenke Lee, Dong Xiang, Information-theoretic measures for anomaly detection ieee symposium on security and privacy. pp. 130- 143 ,(2001) , 10.1109/SECPRI.2001.924294
N. Ye, S.M. Emran, Q. Chen, S. Vilbert, Multivariate statistical analysis of audit trails for host-based intrusion detection IEEE Transactions on Computers. ,vol. 51, pp. 810- 820 ,(2002) , 10.1109/TC.2002.1017701
N. Hohn, D. Veitch, Inverting sampled traffic IEEE ACM Transactions on Networking. ,vol. 14, pp. 68- 80 ,(2006) , 10.1109/TNET.2005.863456