Statistical model applied to NetFlow for network intrusion detection

被引:3
|
作者
Proto A. [1 ]
Alexandre L.A. [1 ]
Batista M.L. [1 ]
Oliveira I.L. [1 ]
Cansian A.M. [1 ]
机构
[1] UNESP - Universidade Estadual Paulista 'Júlio de Mesquita Filho', Departamento de Ciências de Computação e Estatística, ACME Computer Security Research Lab., 2265, Jd. Nazareth, S. J. do Rio Preto, S. Paulo, Cristóvão Colombo Street
来源
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) | 2010年 / 6480卷 / PART 2期
关键词
anomaly; intrusion detection; NetFlow; network; Security; statistical;
D O I
10.1007/978-3-642-17697-5_9
中图分类号
学科分类号
摘要
The computers and network services became presence guaranteed in several places. These characteristics resulted in the growth of illicit events and therefore the computers and networks security has become an essential point in any computing environment. Many methodologies were created to identify these events; however, with increasing of users and services on the Internet, many difficulties are found in trying to monitor a large network environment. This paper proposes a methodology for events detection in large-scale networks. The proposal approaches the anomaly detection using the NetFlow protocol, statistical methods and monitoring the environment in a best time for the application. © 2010 Springer-Verlag Berlin Heidelberg.
引用
收藏
页码:179 / 191
页数:12
相关论文
共 50 条
  • [1] Model-Driven Network Monitoring Using NetFlow Applied to Threat Detection
    Gonzalez-Sanchez, Daniel
    Martinez-Casanueva, Ignacio D.
    Pastor, Antonio
    Bellido Triana, Luis
    Munoz Zamarro, Cristina Pinar
    Moreno Sancho, Alejandro Antonio
    Fernandez Cambronero, David
    Lopez, Diego
    PROCEEDINGS OF THE 2022 IEEE 8TH INTERNATIONAL CONFERENCE ON NETWORK SOFTWARIZATION (NETSOFT 2022): NETWORK SOFTWARIZATION COMING OF AGE: NEW CHALLENGES AND OPPORTUNITIES, 2022, : 450 - 455
  • [2] NetFlow Based Intrusion Detection System
    Wang Zhenqi
    Wang Xinyu
    2008 INTERNATIONAL CONFERENCE ON MULTIMEDIA AND INFORMATION TECHNOLOGY, PROCEEDINGS, 2008, : 825 - 828
  • [3] Statistical traffic modeling for network intrusion detection
    Cabrera, JBD
    Ravichandran, B
    Mehra, RK
    8TH INTERNATIONAL SYMPOSIUM ON MODELING, ANALYSIS AND SIMULATION OF COMPUTER AND TELECOMMUNICATION SYSTEMS, PROCEEDINGS, 2000, : 466 - 473
  • [4] Evolving statistical rulesets for network intrusion detection
    Rastegari, Samaneh
    Hingston, Philip
    Lam, Chiou-Peng
    APPLIED SOFT COMPUTING, 2015, 33 : 348 - 359
  • [5] Network Statistics in Function of Statistical Intrusion Detection
    Cisar, Petar
    Cisar, Sanja Maravic
    COMPUTATIONAL INTELLIGENCE IN ENGINEERING, 2010, 313 : 27 - +
  • [6] Flow Based Network Intrusion Detection System using Hardware-Accelerated NetFlow Probes
    Bartos, Karel
    Grill, Martin
    Krmicek, Vojtech
    Rehak, Martin
    Celeda, Pavel
    CESNET CONFERENCE 2008-SECURITY, MIDDLEWARE, AND VIRTUALIZATION-GLUE OF FUTURE NETWORKS, 2008, : 49 - 56
  • [7] Go With the Flow: Clustering Dynamically-Defined NetFlow Features for Network Intrusion Detection with DYNIDS
    Dias, Luis
    Valente, Simao
    Correia, Miguel
    2020 IEEE 19TH INTERNATIONAL SYMPOSIUM ON NETWORK COMPUTING AND APPLICATIONS (NCA), 2020,
  • [8] On the statistical distribution of processing times in network intrusion detection
    Cabrera, JBD
    Gosar, J
    Lee, W
    Mehra, RK
    2004 43RD IEEE CONFERENCE ON DECISION AND CONTROL (CDC), VOLS 1-5, 2004, : 75 - 80
  • [9] Network intrusion detection using statistical probability distribution
    Mun, Gil-Jong
    Kim, Yong-Min
    Kim, DongKook
    Noh, Bong-Nam
    COMPUTATIONAL SCIENCE AND ITS APPLICATIONS - ICCSA 2006, PT 2, 2006, 3981 : 340 - 348
  • [10] Network intrusion and fault detection: A statistical anomaly approach
    Manikopoulos, C
    Papavassiliou, S
    IEEE COMMUNICATIONS MAGAZINE, 2002, 40 (10) : 76 - 82
12345