Title :
Detecting Heavy Change in the Heavy Hitter distribution of network traffic
Author :
Callegari, Christian ; Giordano, Stefano ; Pagano, Michele ; Pepe, Teresa
Author_Institution :
Dept. of Inf. Eng., Univ. of Pisa, Pisa, Italy
Abstract :
The increasing number of network attacks causes growing problems for network operators and users. Thus, detecting anomalous traffic is of primary interest in IP networks management. In this paper we present a novel method for network anomaly detection, based on the idea of discovering Heavy Change (HC) in the distribution of the Heavy Hitters in the network traffic. To assess the validity of the proposed method, we have performed an extensive experimental evaluation phase, during which our system performance have been compared to a more “classical” HC-based approach. The performance analysis, presented in this paper, demonstrates the effectiveness of the proposed method.
Keywords :
IP networks; telecommunication network management; telecommunication security; telecommunication traffic; HC-based approach; IP networks management; anomalous traffic; heavy change detection; heavy hitter distribution; network attacks; network operators; network traffic; performance analysis; Aggregates; Approximation algorithms; Context; Data models; Data structures; IP networks; Random access memory; Anomaly Detection; Heavy Change; Heavy Hitter; Sketch;
Conference_Titel :
Wireless Communications and Mobile Computing Conference (IWCMC), 2011 7th International
Conference_Location :
Istanbul
Print_ISBN :
978-1-4244-9539-9
DOI :
10.1109/IWCMC.2011.5982727
