Network Intrusion Detection Using Wavelet Analysis

Network Intrusion Detection Using Wavelet Analysis

The inherent presence of self-similarity in network (LAN, Internet) traffic motivates the applicability of wavelets in the study of ‘burstiness’ features of them. Inspired by the methods that use the self-similarity property of a data network traffic as normal behaviour and any deviation from it as...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Intelligent Information Technology 2004-01, p.224-232
Hauptverfasser: Rawat, Sanjay, Sastry, Challa S.
Format: Artikel
Sprache:eng
Schlagworte:
Applied sciences
Artificial intelligence
Burstiness
Computer science
control theory
systems
Energy plot
Exact sciences and technology
Hurst parameter
Intrusion detection
Learning and adaptive systems
Network traffic
Self-similarity
Wavelets
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The inherent presence of self-similarity in network (LAN, Internet) traffic motivates the applicability of wavelets in the study of ‘burstiness’ features of them. Inspired by the methods that use the self-similarity property of a data network traffic as normal behaviour and any deviation from it as the anomalous behaviour, we propose a method for anomaly based network intrusion detection. Making use of the relations present among the wavelet coefficients of a self-similar function in a different way, our method determines the possible presence of not only an anomaly, but also its location in the data. We provide the empirical results on KDD data set to justify our approach.
ISSN:0302-9743
1611-3349
DOI:10.1007/978-3-540-30561-3_24