NetFlow Anomaly Detection Though Parallel Cluster Density Analysis in Continuous Time-Series

被引：2

作者：

Flanagan, Kieran ^{[1
,2
]}

Fallon, Enda ^{[1
]}

Connolly, Paul ^{[2
]}

Awad, Abir ^{[3
]}

机构：

[1] Athlone Inst Technol, Software Res Inst, Athlone, Ireland

[2] NPD Grp Inc, IDA Business Pk, Athlone, Westmeath, Ireland

[3] Univ South Wales, Fac Comp Engn & Sci, Treforest, Wales

来源：

WIRED/WIRELESS INTERNET COMMUNICATIONS, WWIC 2017 | 2017年 / 10372卷

关键词：

Anomaly detection; NetFlow; Clustering; Density analysis;

D O I：

10.1007/978-3-319-61382-6_18

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

The increase in malicious network based attacks has resulted in a growing interest in network anomaly detection. The ability to detect unauthorized or malicious activity on a network is of importance to any organization. With the increase in novel attacks, anomaly detection techniques can be more successful in detecting unknown malicious activity in comparison to traditional signature based methods. However, in a real-world environment, there are many variables that cannot be simulated. This paper proposes an architecture where parallel clustering algorithms work concurrently in order to detect abnormalities that may be lost while traversing over time-series windows. The presented results describe the NetFlow activity of the NPD Group, Inc. over a 24-hour period. The presented results contain real-world anomalies that were detected.

引用

页码：221 / 232

页数：12

共 50 条

[41] PARALLEL MOVEMENT OF TIME-SERIES
PFANZAGL, J
METRIKA, 1963, 6 (02) : 100 - 113
[42] USING CLUSTER-ANALYSIS TO CLASSIFY TIME-SERIES
SHAW, CT
KING, GP
PHYSICA D, 1992, 58 (1-4): : 288 - 298
[43] Cluster-weighted modelling for time-series analysis
N. Gershenfeld
B. Schoner
E. Metois
Nature, 1999, 397 : 329 - 332
[44] Cluster analysis of long time-series medical datasets
Hirano, S
Tsumoto, S
DATA MINING AND KNOWLEDGE DISCOVERY: THEORY, TOOLS, AND TECHNOLOGY VI, 2004, 5433 : 13 - 20
[45] Cluster-weighted modelling for time-series analysis
Nature, 6717 (329-332):
[46] Anomaly Detection in Industrial Multivariate Time-Series Data With Neutrosophic Theory
Liu, Peng
Han, Qilong
Wu, Ting
Tao, Wenjian
IEEE INTERNET OF THINGS JOURNAL, 2023, 10 (15) : 13458 - 13473
[47] FluxEV: A Fast and Effective Unsupervised Framework for Time-Series Anomaly Detection
Li, Jia
Di, Shimin
Shen, Yanyan
Chen, Lei
WSDM '21: PROCEEDINGS OF THE 14TH ACM INTERNATIONAL CONFERENCE ON WEB SEARCH AND DATA MINING, 2021, : 824 - 832
[48] Multivariate Time-series Anomaly Detection via Graph Attention Network
Zhao, Hang
Wang, Yujing
Duan, Juanyong
Huang, Congrui
Cao, Defu
Tong, Yunhai
Xu, Bixiong
Bai, Jing
Tong, Jie
Zhang, Qi
20TH IEEE INTERNATIONAL CONFERENCE ON DATA MINING (ICDM 2020), 2020, : 841 - 850
[49] Two dimensional time-series for anomaly detection and regulation in adaptive systems
Burgess, M
MANAGEMENT TECHNOLOGIES FOR E-COMMERCE AND E-BUSINESS APPLICATIONS, PROCEEDINGS, 2002, 2506 : 169 - 180
[50] TMANomaly: Time-Series Mutual Adversarial Networks for Industrial Anomaly Detection
Zhang, Lianming
Bai, Wenji
Xie, Xiaowei
Chen, Liying
Dong, Pingping
IEEE TRANSACTIONS ON INDUSTRIAL INFORMATICS, 2024, 20 (02) : 2263 - 2271

← 1 2 3 4 5 →