Dynamic Modeling of Internet Traffic for Intrusion Detection. (19th October 2006)

Record Type:
Journal Article
Title:
Dynamic Modeling of Internet Traffic for Intrusion Detection. (19th October 2006)
Main Title:
Dynamic Modeling of Internet Traffic for Intrusion Detection
Authors:
Shah Shah, Khushboo Khushboo
Jonckheere Jonckheere, Edmond Edmond
Bohacek Bohacek, Stephan Stephan
Other Names:
Ehlers Ehlers Frank Frank Academic Editor.
Abstract:
Abstract : Computer network traffic is analyzed via mutual information techniques, implemented using linear and nonlinear canonical correlation analyses, with the specific objective of detecting UDP flooding attacks. NS simulation of HTTP, FTP, and CBR traffic shows that flooding attacks are accompanied by a change of mutual information, either at the link being flooded or at another upstream or downstream link. This observation appears to be topology independent, as the technique is demonstrated on the so-called parking-lot topology, random 50-node topology, and 100-node transit-stub topology. This technique is also employed to detect UDP flooding with low false alarm rate on a backbone link. These results indicate that a change in mutual information provides a useful detection criterion when no other signature of the attack is available.
Is Part Of:
EURASIP journal on advances in signal processing. Volume 2007(2007)
Journal:
EURASIP journal on advances in signal processing
Issue:
Volume 2007(2007)
Issue Display:
Volume 2007, Issue 2007 (2007)
Year:
2007
Volume:
2007
Issue:
2007
Issue Sort Value:
2007-2007-2007-0000
Page Start:
Page End:
Publication Date:
2006-10-19
Subjects:
Signal processing -- Periodicals
Traitement du signal
Signal processing
Periodicals
621.3822
Journal URLs:
https://asp-eurasipjournals.springeropen.com/
http://link.springer.com/
http://www.hindawi.com/journals/asp/
DOI:
10.1155/2007/90312
Languages:
English
ISSNs:
1687-6172
Deposit Type:
Legaldeposit
View Content:
Available online (eLD content is only available in our Reading Rooms)
Physical Locations:
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store
Ingest File:
11249.xml