Title :
Network intrusion and failure detection system with statistical analyses of packet headers
Author :
Goto, Kunio ; Kojima, Koji
Author_Institution :
Dept. of Inf. & Telecommun. Eng., Nanzan Univ., Japan
Abstract :
In this research, practical application for quasi-realtime intrusion and network failure detection was designed and implemented. IP packet headers are counted at the monitoring point and summarized in every 5 minutes. Then four kind of statistical analyses are applied to the 5-minute summaries to find a sudden increase/decrease. As the result, the developed application works fine with a standard desktop PC. Warnings were reported in at most 1 minute after every 5-minute summary. In addition to the warning report, Web interfaces were implemented to help the administrator to trace the cause of a warning.
Keywords :
IP networks; packet switching; security of data; statistical analysis; system monitoring; IP packet header; Web interface; network failure detection; quasirealtime network intrusion; statistical analysis; Access protocols; Condition monitoring; Counting circuits; Databases; Design engineering; Displays; Failure analysis; Intrusion detection; Standards development; Statistical analysis;
Conference_Titel :
Systems Engineering, 2005. ICSEng 2005. 18th International Conference on
Print_ISBN :
0-7695-2359-5
DOI :
10.1109/ICSENG.2005.57
