• DocumentCode
    1015835
  • Title

    Adaptive tracking of network behavioral signals for real time forensic analysis of service quality degradation

  • Author

    Battisha, Mohamed ; Elmaghraby, Adel ; Meleis, Hanafy ; Samineni, Satya

  • Author_Institution
    Univ. of Louisville, Louisville, KY
  • Volume
    5
  • Issue
    2
  • fYear
    2008
  • fDate
    6/1/2008 12:00:00 AM
  • Firstpage
    105
  • Lastpage
    117
  • Abstract
    The current shift from the static access based service model to the dynamic application based service model introduced major challenges for effective forensics of any quality degradation of the provided service. In addition, about 55 percent of the Tier 1 and Tier 2 providers are planning to offer managed security services to guarantee an attack free IP service. In this article, we propose a novel approach of modeling the network behavior in order to select meaningful metrics to be used in tracking the network behavior changes. Based on the deftly selected metrics, we utilize an adaptive exponentially weighted moving average (EWMA) with a moving centerline control chart to monitor the changes of the network behavior. Signaling the network behavior changes in association with the service objective based network behavioral model should provide the required information for effective forensic of the service quality degradation. Our methodology is applied on both simulated and real traces of network behavioral metrics. We illustrate the effectiveness of the forensic analysis model for the selection of relevant behavioral metrics. As well, we show how the adaptive EWMA can be used for tracking the changes in the network behavior from normal to abnormal and vice versa.
  • Keywords
    IP networks; adaptive signal detection; computer crime; moving average processes; quality of service; telecommunication security; adaptive IP network behavioral signal tracking; adaptive exponentially weighted moving average; moving centerline control chart; real time forensic analysis; service quality degradation; Adaptive control; Adaptive systems; Computer crime; Degradation; Forensics; Jitter; Programmable control; Quality management; Signal analysis; Web and internet services;
  • fLanguage
    English
  • Journal_Title
    Network and Service Management, IEEE Transactions on
  • Publisher
    ieee
  • ISSN
    1932-4537
  • Type

    jour

  • DOI
    10.1109/TNSM.2008.021104
  • Filename
    4694135