Modeling Traffic Flow Using Conversation Exchange Dynamics for Identifying Network Attacks

Modeling Traffic Flow Using Conversation Exchange Dynamics for Identifying Network Attacks

We present a novel approach to identifying anomalous network events Specifically, a method for characterizing and displaying the flow of conversations across a distributed system with a high number of interacting entities is discussed and analyzed. Results from from attacks contained in the DARPA Li...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Mylavarapu, Sudhamsu, McEachen, John C., Zachary, John M., Walch, Stefan L., Marinovich, John S.
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Applied sciences
Exact sciences and technology
False Alarm Rate
Intrusion Detection
Intrusion Detection System
State Walk
Systems, networks and services of telecommunications
Telecommunications
Telecommunications and information theory
Teletraffic
Traffic Flow
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:We present a novel approach to identifying anomalous network events Specifically, a method for characterizing and displaying the flow of conversations across a distributed system with a high number of interacting entities is discussed and analyzed. Results from from attacks contained in the DARPA Lincoln Lab IDS test data and from operational network traffic are presented. These results suggest that our approach presents a unique perspective on anomalies in computer network traffic.
ISSN:0302-9743
1611-3349
DOI:10.1007/978-3-540-30197-4_32