ARIMA Based Network Anomaly Detection
作者: Asrul H. Yaacob , Ian K.T. Tan , Su Fong Chien , Hon Khi Tan
关键词: Early warning system 、 Denial-of-service attack 、 Software as a service 、 Intrusion detection system 、 Network security 、 Network management 、 Computer science 、 Anomaly detection 、 Web service 、 Computer security
摘要: An early warning system on potential attacks from networks will enable network administrators or even automated management software to take preventive measures. This is needed as we move towards maximizing the utilization of with new paradigms such Web Services and Software As A Service. paper introduces a novel approach through using Auto-Regressive Integrated Moving Average (ARIMA) technique detect that may occur in network. The solution able provide feedback its predictive capabilities hence an system. With affirmative results, this can serve beyond detection Denial Service (DoS) sufficient development; defensive be achieved.
acm.org 
sci-hub.se 参考文章(4)
Geoffrey M. Voelker, Stefan Savage, David Moore, Inferring internet denial-of-service activity usenix security symposium. pp. 2- 2 ,(2001)
Yantai Shu, Zhigang Jin, Lianfang Zhang, Lei Wang, O.W.W. Yang, Traffic prediction using FARIMA models international conference on communications. ,vol. 2, pp. 891- 895 ,(1999) , 10.1109/ICC.1999.765402
Hervé Debar, Marc Dacier, Andreas Wespi, Towards a taxonomy of intrusion-detection systems Computer Networks. ,vol. 31, pp. 805- 822 ,(1999) , 10.1016/S1389-1286(98)00017-6
Ed. McKenzie, General exponential smoothing and the equivalent arma process Journal of Forecasting. ,vol. 3, pp. 333- 344 ,(1984) , 10.1002/FOR.3980030312