DocumentCode :
566621
Title :
Anomaly detection using new MIB traffic parameters based on profile
Author :
Sangmee, Patthama ; Thanon, Nithi ; Elz, Nittida
Author_Institution :
Dept. of Comput. Sci., Prince of Songkla Univ., Songkhla, Thailand
Volume :
2
fYear :
2012
fDate :
24-26 April 2012
Firstpage :
648
Lastpage :
653
Abstract :
This paper present MIB+, which is an extension of the standard MIB adding parameters to create profiles for intrusion detection. These are based on the Anomaly Detection method to identify the type of intrusion to prevent or find the ways to defeat it. We conducted three experiments to detect a SYN flood attack, DNS flood attack and Null scan. The results are presented in the form of graphs to illustrate trends of network usage, both normal and abnormal.
Keywords :
Servers; Anomaly Detection; MIB+; Profile; SNMP;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Computing Technology and Information Management (ICCM), 2012 8th International Conference on
Conference_Location :
Seoul, Korea (South)
Print_ISBN :
978-1-4673-0893-9
Type :
conf
Filename :
6268579
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=566621
بازگشت