Nothing Special   »   [go: up one dir, main page]

Cabrera et al., 2004 - Google Patents

On the statistical distribution of processing times in network intrusion detection

Cabrera et al., 2004

View PDF
Document ID
1725717911069658337
Author
Cabrera J
Gosar J
Lee W
Mehra R
Publication year
Publication venue
2004 43rd IEEE Conference on Decision and Control (CDC)(IEEE Cat. No. 04CH37601)

External Links

Snippet

Intrusion detection systems (IDSs) are relatively complex devices that monitor information systems in search for security violations. Characterizing the service times of network IDSs is a crucial step in improving their real time performance. We analyzed about 41 million …
Continue reading at www.academia.edu (PDF) (other versions)

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRICAL DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/30Monitoring
    • G06F11/34Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation; Recording or statistical evaluation of user activity, e.g. usability assessment
    • G06F11/3409Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation; Recording or statistical evaluation of user activity, e.g. usability assessment for performance assessment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1425Traffic logging, e.g. anomaly detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing packet switching networks
    • H04L43/06Report generation
    • H04L43/062Report generation for traffic related reporting
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing packet switching networks
    • H04L43/02Arrangements for monitoring or testing packet switching networks involving a reduction of monitoring data
    • H04L43/026Arrangements for monitoring or testing packet switching networks involving a reduction of monitoring data using flow generation
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRICAL DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/30Monitoring
    • G06F11/34Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation; Recording or statistical evaluation of user activity, e.g. usability assessment
    • G06F11/3466Performance evaluation by tracing or monitoring
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/06Resources, workflows, human or project management, e.g. organising, planning, scheduling or allocating time, human or machine resources; Enterprise planning; Organisational models
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing packet switching networks
    • H04L43/08Monitoring based on specific metrics
    • H04L43/0876Network utilization
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/26Monitoring arrangements; Testing arrangements
    • H04L12/2602Monitoring arrangements

Similar Documents

Publication Publication Date Title
Cabrera et al. On the statistical distribution of processing times in network intrusion detection
US8260907B2 (en) Methods, systems and computer program products for triggered data collection and correlation of status and/or state in distributed data processing systems
US7840664B2 (en) Automated characterization of network traffic
US7984126B2 (en) Executable application network impact and load characteristic estimation system
US8095635B2 (en) Managing network traffic for improved availability of network services
EP1900150B1 (en) Method and monitoring system for sample-analysis of data comprising a multitude of data packets
US20130013542A1 (en) Scalable traffic classifier and classifier training system
JP3957712B2 (en) Communication monitoring system
CN106105112A (en) Analysis rule adjusting apparatus, analysis rule adjust system, analysis rule method of adjustment and analysis rule adjustment programme
CN1408155A (en) Method and arrangement for performing analysis of data network
Bauer et al. On the evolution of internet flow characteristics
JP2010231368A (en) Monitoring method and monitoring program
CN117319047A (en) Network path analysis method and system based on network security anomaly detection
US20130272159A1 (en) System for Estimating Download Speed From Passive Measurements
CN111131070A (en) Port time sequence-based network traffic classification method and device and storage medium
US7305005B1 (en) Correlation system and method for monitoring high-speed networks
Kiran et al. Detecting anomalous packets in network transfers: investigations using PCA, autoencoder and isolation forest in TCP
Goseva-Popstojanova et al. A contribution towards solving the web workload puzzle
CN107145508B (en) Website data processing method, device and system
Jung et al. A prediction method of network traffic using time series models
CN106850632A (en) The detection method and device of a kind of unusual combination data
Ahmed et al. Nonparametric Bayesian identification of primary users' payloads in cognitive radio networks
CN116264575A (en) Edge node scheduling method, device, computing equipment and storage medium
US20150046480A1 (en) Information processing device for executing load evaluation, and load evaluation method
Koay et al. (Short Paper) Effectiveness of entropy-based features in high-and low-intensity DDoS attacks detection