Online Detection of Network Traffic Anomalies Using Degree Distributions - International Journal of Communications, Network and System Sciences

IJCNS > Vol.3 No.2, February 2010

Online Detection of Network Traffic Anomalies Using Degree Distributions ()

HTML

Download as PDF (Size: 1367KB) PP. 177-182

DOI: 10.4236/ijcns.2010.32025 6,144 Downloads 12,047 Views Citations

Author(s)

Wuzuo WANG, Weidong WU

Affiliation(s)

ABSTRACT

Diagnosing traffic anomalies rapidly and accurately is critical to the efficient operation of large computer networks. However, it is still a challenge for network administrators. One problem is that the amount of traffic data does not allow real-time analysis of details. Another problem is that some generic detection metrics possess lower capabilities on diagnosing anomalies. To overcome these problems, we propose a system model with an explicit algorithm to perform on-line traffic analysis. In this scheme, we first make use of degree distributions to effectively profile traffic features, and then use the entropy to determine and report changes of degree distributions, which changes of entropy values can accurately differentiate a massive network event, normal or anomalous by adaptive threshold. Evaluations of this scheme demonstrate that it is feasible and efficient for on-line anomaly detection in practice via simulations, using traffic trace collected at high-speed link.

KEYWORDS

Anomaly Detection, Degree Distributions, Entropy

Share and Cite:

W. WANG and W. WU, "Online Detection of Network Traffic Anomalies Using Degree Distributions," International Journal of Communications, Network and System Sciences, Vol. 3 No. 2, 2010, pp. 177-182. doi: 10.4236/ijcns.2010.32025.

Journals Menu

Follow SCIRP

	+1 323-425-8868
	customer@scirp.org
	+86 18163351462(WhatsApp)
	1655362766

	Paper Publishing WeChat

Journals Menu

Home

About SCIRP

Service

Policies