DocumentCode :
1940433
Title :
A comparative study of two network-based anomaly detection methods
Author :
Nyalkalkar, Kaustubh ; Sinha, Sushant ; Bailey, Michael ; Jahanian, Farnam
Author_Institution :
Electr. Eng. & Comput. Sci., Univ. of Michigan, Ann Arbor, MI, USA
fYear :
2011
fDate :
10-15 April 2011
Firstpage :
176
Lastpage :
180
Abstract :
Modern networks are complex and hence, network operators often rely on automation to assist in assuring the security, availability, and performance of these networks. At the core of many of these systems are general-purpose anomaly-detection algorithms that seek to identify normal behavior and detect deviations. While the number and variations of these algorithms are large, two broad categories have emerged as leading approaches to this problem: those based on spatial correlation and those based on temporal analysis. In this paper, we compare one promising approach from each of these categories, namely entropy-based PCA and HHH-based wavelets.
Keywords :
principal component analysis; telecommunication network management; telecommunication network reliability; telecommunication security; HHH-based wavelet; entropy-based PCA; general-purpose anomaly detection algorithm; modern network automation; modern networksecurity; network operators; network-based anomaly detection method; temporal analysis; Accuracy; Algorithm design and analysis; Correlation; Detectors; Measurement; Principal component analysis; Time series analysis;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
INFOCOM, 2011 Proceedings IEEE
Conference_Location :
Shanghai
ISSN :
0743-166X
Print_ISBN :
978-1-4244-9919-9
Type :
conf
DOI :
10.1109/INFCOM.2011.5934975
Filename :
5934975
Link To Document :
بازگشت