Real-time behaviour profiling for network monitoring. (12th April 2010)
- Record Type:
- Journal Article
- Title:
- Real-time behaviour profiling for network monitoring. (12th April 2010)
- Main Title:
- Real-time behaviour profiling for network monitoring
- Authors:
- Xu, Kuai
Wang, Feng
Bhattacharyya, Supratik
Zhang, Zhi-Li - Abstract:
- This paper presents the design and implementation of a real-time behaviour profiling system for internet links. The system uses flow-level information, and applies data mining and information-theoretic techniques to automatically discover significant events based on communication patterns. We demonstrate the operational feasibility of the system by implementing it and performing benchmarking of CPU and memory costs using packet traces from backbone links. To improve the robustness of this system against sudden traffic surges, we propose a novel filtering algorithm. The proposed algorithm successfully reduces the CPU and memory cost while maintaining high profiling accuracy. Finally, we devise and evaluate simple yet effective blocking strategies to reduce prevalent exploit traffic, and build a simple event analysis engine to generate ACL rules for filtering unwanted traffic.
- Is Part Of:
- International journal of internet protocol technology. Volume 5:Number 1/2(2010)
- Journal:
- International journal of internet protocol technology
- Issue:
- Volume 5:Number 1/2(2010)
- Issue Display:
- Volume 5, Issue 1/2 (2010)
- Year:
- 2010
- Volume:
- 5
- Issue:
- 1/2
- Issue Sort Value:
- 2010-0005-NaN-0000
- Page Start:
- 65
- Page End:
- 80
- Publication Date:
- 2010-04-12
- Subjects:
- real-time traffic monitoring -- behaviour profiling -- profiling-aware filtering algorithms -- network traffic -- internet links -- data mining -- information theory -- communication patterns
File Transfer Protocol (Computer network protocol) -- Periodicals
Multicasting (Computer networks) -- Periodicals
004.678 - Journal URLs:
- http://www.inderscience.com/jhome.php?jcode=ijipt ↗
http://www.inderscience.com/ ↗ - Languages:
- English
- ISSNs:
- 1743-8209
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 8707.xml