An adaptive method for anomaly detection in symmetric network traffic

被引:1
作者
Yu, Ming
Zhou, Xi-Yuan
机构
[1] Xidian Univ, Sch Commun Engn, Xian 710071, Peoples R China
[2] 54th Res Ints CETC, Shijiazhuang 050081, Peoples R China
来源
COMPUTERS & SECURITY | 2007年 / 26卷 / 06期
关键词
anomaly detection; inside security; algorithm design; network security; sequential analysis;
D O I
10.1016/j.cose.2007.06.001
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Symmetry is an obvious phenomenon in two-way communications. in this paper, we present an adaptive nonparametric method that can be used for anomaly detection in symmetric network traffic. Two important features are emphasized in this method: (i) automatic adjustment of the detection threshold according to the traffic conditions; and (ii) timely detection of the end of an anomalous event. Source-end defense against SYN flooding attacks is used to illustrate the efficacy of this method. Experiments on real traffic traces show that this method has high detection accuracy and low detection delays, and excels at detecting low intensity attacks. (c) 2007 Elsevier Ltd. All rights reserved.
引用
收藏
页码:427 / 433
页数:7
相关论文
共 50 条
[31]   Autoencoder-Based Anomaly Detection in Network Traffic [J].
Korniszuk, Krzysztof ;
Sawicki, Bartosz .
2024 25TH INTERNATIONAL CONFERENCE ON COMPUTATIONAL PROBLEMS OF ELECTRICAL ENGINEERING, CPEE 2024, 2024,
[32]   Evaluation of feature learning for anomaly detection in network traffic [J].
Perez, Daniel ;
Alonso, Serafin ;
Moran, Antonio ;
Prada, Miguel A. ;
Fuertes, Juan Jose ;
Dominguez, Manuel .
EVOLVING SYSTEMS, 2021, 12 (01) :79-90
[33]   PCA-Based Network Traffic Anomaly Detection [J].
Ding, Meimei ;
Tian, Hui .
TSINGHUA SCIENCE AND TECHNOLOGY, 2016, 21 (05) :500-509
[34]   Unsupervised Anomaly Detection and Explanation in Network Traffic with Transformers [J].
Kummerow, Andre ;
Abrha, Esrom ;
Eisenbach, Markus ;
Roesch, Dennis .
ELECTRONICS, 2024, 13 (22)
[35]   Network Traffic Analysis based on Collective Anomaly Detection [J].
Ahmed, Mohiuddin ;
Mahmood, Abdun Naser .
PROCEEDINGS OF THE 2014 9TH IEEE CONFERENCE ON INDUSTRIAL ELECTRONICS AND APPLICATIONS (ICIEA), 2014, :1141-1146
[36]   Optimizing Network Traffic Anomaly Detection with Normalized Features [J].
Aljarrah, Sami Jamil ;
Cherbal, Sarra ;
Mashaleh, Ashraf ;
Alauthman, Mohammad ;
Gawanmeh, Amjad .
2024 INTERNATIONAL JORDANIAN CYBERSECURITY CONFERENCE, IJCC, 2024, :143-148
[37]   Network Traffic Anomaly Detection based on Ratio and Volume [J].
Kim, Hyun Joo ;
Na, Jung C. ;
Jang, Jong S. .
INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY, 2006, 6 (5B) :190-193
[38]   Evaluation of feature learning for anomaly detection in network traffic [J].
Daniel Pérez ;
Serafín Alonso ;
Antonio Morán ;
Miguel A. Prada ;
Juan José Fuertes ;
Manuel Domínguez .
Evolving Systems, 2021, 12 :79-90
[39]   Network Traffic Anomaly Detection Based on Generative Adversarial Network and Transformer [J].
Wang, Zhurong ;
Zhou, Jing ;
Hei, Xinhong .
ADVANCES IN NATURAL COMPUTATION, FUZZY SYSTEMS AND KNOWLEDGE DISCOVERY, ICNC-FSKD 2022, 2023, 153 :228-235
[40]   Network Traffic Anomaly Detection Based on Spatiotemporal Feature Extraction and Channel Attention [J].
Ji, Changpeng ;
Yu, Haofeng ;
Dai, Wei .
PROCESSES, 2024, 12 (07)
12345