DocumentCode
3712733
Title
IPCA for network anomaly detection
Author
Athanasios Delimargas;Emmanouil Skevakis;Hassan Halabian;Ioannis Lambadaris;Nabil Seddigh;Biswajit Nandy;Rupinder Makkar
Author_Institution
Carleton University, Department of Systems and Computer Engineering, 1125 Colonel By Drive Ottawa, Ontario K1S 5B6 Canada
fYear
2015
Firstpage
617
Lastpage
622
Abstract
As the number, complexity and diversity of cyber threats continue to increase in network infrastructures, anomaly detection techniques constitute a crucial alternative towards enhancing network security. Principal Component Analysis (PCA) is a widely used network anomaly detection statistical methodology. Despite its ability in detecting traffic anomalies, relevant research has highlighted certain drawbacks of this technique. In our work we develop the Iterative PCA (IPCA) method to address those shortcomings. We aim at providing a useful tool that will enable a network administrator to identify network anomalies. The results of our experimentation are encouraging. They indicate that IPCA possesses promising capabilities in efficiently detecting anomalies while mitigating the limitations of the classical PCA approach.
Keywords
"Principal component analysis","IP networks","Fires","Yttrium","Entropy","Iterative methods"
Publisher
ieee
Conference_Titel
Military Communications Conference, MILCOM 2015 - 2015 IEEE
Type
conf
DOI
10.1109/MILCOM.2015.7357512
Filename
7357512
Link To Document