Cabrera et al., 2004 - Google Patents
On the statistical distribution of processing times in network intrusion detectionCabrera et al., 2004
View PDF- Document ID
- 1725717911069658337
- Author
- Cabrera J
- Gosar J
- Lee W
- Mehra R
- Publication year
- Publication venue
- 2004 43rd IEEE Conference on Decision and Control (CDC)(IEEE Cat. No. 04CH37601)
External Links
Snippet
Intrusion detection systems (IDSs) are relatively complex devices that monitor information systems in search for security violations. Characterizing the service times of network IDSs is a crucial step in improving their real time performance. We analyzed about 41 million …
- 238000009826 distribution 0 title abstract description 29
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/30—Monitoring
- G06F11/34—Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation; Recording or statistical evaluation of user activity, e.g. usability assessment
- G06F11/3409—Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation; Recording or statistical evaluation of user activity, e.g. usability assessment for performance assessment
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing packet switching networks
- H04L43/06—Report generation
- H04L43/062—Report generation for traffic related reporting
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing packet switching networks
- H04L43/02—Arrangements for monitoring or testing packet switching networks involving a reduction of monitoring data
- H04L43/026—Arrangements for monitoring or testing packet switching networks involving a reduction of monitoring data using flow generation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/30—Monitoring
- G06F11/34—Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation; Recording or statistical evaluation of user activity, e.g. usability assessment
- G06F11/3466—Performance evaluation by tracing or monitoring
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06Q—DATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/06—Resources, workflows, human or project management, e.g. organising, planning, scheduling or allocating time, human or machine resources; Enterprise planning; Organisational models
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing packet switching networks
- H04L43/08—Monitoring based on specific metrics
- H04L43/0876—Network utilization
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/02—Details
- H04L12/26—Monitoring arrangements; Testing arrangements
- H04L12/2602—Monitoring arrangements
Similar Documents
Publication | Publication Date | Title |
---|---|---|
Cabrera et al. | On the statistical distribution of processing times in network intrusion detection | |
US8260907B2 (en) | Methods, systems and computer program products for triggered data collection and correlation of status and/or state in distributed data processing systems | |
US7840664B2 (en) | Automated characterization of network traffic | |
US7984126B2 (en) | Executable application network impact and load characteristic estimation system | |
US8095635B2 (en) | Managing network traffic for improved availability of network services | |
EP1900150B1 (en) | Method and monitoring system for sample-analysis of data comprising a multitude of data packets | |
US20130013542A1 (en) | Scalable traffic classifier and classifier training system | |
JP3957712B2 (en) | Communication monitoring system | |
CN106105112A (en) | Analysis rule adjusting apparatus, analysis rule adjust system, analysis rule method of adjustment and analysis rule adjustment programme | |
CN1408155A (en) | Method and arrangement for performing analysis of data network | |
Bauer et al. | On the evolution of internet flow characteristics | |
JP2010231368A (en) | Monitoring method and monitoring program | |
CN117319047A (en) | Network path analysis method and system based on network security anomaly detection | |
US20130272159A1 (en) | System for Estimating Download Speed From Passive Measurements | |
CN111131070A (en) | Port time sequence-based network traffic classification method and device and storage medium | |
US7305005B1 (en) | Correlation system and method for monitoring high-speed networks | |
Kiran et al. | Detecting anomalous packets in network transfers: investigations using PCA, autoencoder and isolation forest in TCP | |
Goseva-Popstojanova et al. | A contribution towards solving the web workload puzzle | |
CN107145508B (en) | Website data processing method, device and system | |
Jung et al. | A prediction method of network traffic using time series models | |
CN106850632A (en) | The detection method and device of a kind of unusual combination data | |
Ahmed et al. | Nonparametric Bayesian identification of primary users' payloads in cognitive radio networks | |
CN116264575A (en) | Edge node scheduling method, device, computing equipment and storage medium | |
US20150046480A1 (en) | Information processing device for executing load evaluation, and load evaluation method | |
Koay et al. | (Short Paper) Effectiveness of entropy-based features in high-and low-intensity DDoS attacks detection |