Network Abnormal Behaviour Analysis System

被引：0

作者：

Choi, Sunoh ^{[1
]}

Choi, Yangseo ^{[1
]}

Lee, Jooyoung ^{[1
]}

Kim, Jonghyun ^{[1
]}

Kim, Ikkyun ^{[1
]}

机构：

[1] ETRI, Network Secur Res Grp, 218 Gajeong Ro, Daejeon, South Korea

来源：

2017 19TH INTERNATIONAL CONFERENCE ON ADVANCED COMMUNICATIONS TECHNOLOGY (ICACT) - OPENING NEW ERA OF SMART SOCIETY | 2017年

关键词：

Network Flow; Analysis;

D O I：

暂无

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

As cyber attacks have increased in recent years, network forensics, which collects and analyses network packets as well as digital forensics, has been studied. However, highspeed networks such as 1 or 10 Gbps networks have many network flows. For example, a 1 Gbps network has hundreds of millions of network flows per day. Analysing network traffic in this situation is very difficult and time-consuming. In this paper, we propose a system that can analyse network abnormal behaviour quickly and easily. We first propose a system that stores the TCP flag when generating network flows. Second, we present some ways to use the TCP flag in network flows to analyse network anomalies such as persistent outbound connections.

引用

页码：49 / 52

页数：4

共 50 条

[1] An Abnormal Connection Detection System based on Network Flow Analysis
Lee, Jong-Hoon
Kim, Ik Kyun
Han, Ki-Jun
2015 IEEE 5TH INTERNATIONAL CONFERENCE ON CONSUMER ELECTRONICS - BERLIN (ICCE-BERLIN), 2015, : 71 - 75
[2] Network Anomaly Detection System: The State of Art of Network Behaviour Analysis
Lim, Shu Yun
Jones, Andy
ICHIT 2008: INTERNATIONAL CONFERENCE ON CONVERGENCE AND HYBRID INFORMATION TECHNOLOGY, PROCEEDINGS, 2008, : 459 - 465
[3] A System of Abnormal Behaviour Detection in Aerial surveillance
Walha, Ahlem
Wali, Ali
Alimi, Adel M.
2013 9TH INTERNATIONAL CONFERENCE ON INFORMATION ASSURANCE AND SECURITY (IAS), 2013, : 102 - 107
[4] An insight into campus network user behaviour analysis decision system
Xian X.
Chen F.
Wang J.
Xian, Xiaobing (xianxb@cslg.cn), 1600, Inderscience Enterprises Ltd., 29, route de Pre-Bois, Case Postale 856, CH-1215 Geneva 15, CH-1215, Switzerland (09): : 3 - 11
[5] Analysis of network abnormal events and safety monitoring in power industry control system
Ding, Z. G.
Li, Q. M.
Zhang, C.
Shi, C. C.
Fei, J. X.
Huang, X. L.
BASIC & CLINICAL PHARMACOLOGY & TOXICOLOGY, 2018, 123 : 95 - 95
[6] A New Artificial Immune System for the Detection of Abnormal Behaviour
Elmeziane, Rachid
Berrada, Ilham
Kassou, Ismail
SOFTWARE ENGINEERING, ARTIFICIAL INTELLIGENCE, NETWORKING AND PARALLEL/DISTRIBUTED COMPUTING, 2008, 149 : 113 - 122
[7] Design and Implementation of IP Network Behaviour Analysis System Based on NetFlow
Hou, Huihui
Xu, Tongge
Zou, Rongbo
2012 12TH INTERNATIONAL CONFERENCE ON INTELLIGENT SYSTEMS DESIGN AND APPLICATIONS (ISDA), 2012, : 533 - 538
[8] Abnormal Behaviour
Smith, M. Hamblin
JOURNAL OF MENTAL SCIENCE, 1924, 70 (288): : 139 - 140
[9] Abnormal reward system network in primary dysmenorrhea
Zhang, Qi
Yu, Siyi
Wang, Yanan
Wang, Minyu
Yang, Ya
Wei, Wei
Guo, Xiaoli
Zeng, Fang
Liang, Fanrong
Yang, Jie
MOLECULAR PAIN, 2019, 15
[10] Neural Network Based Analysis of Tribological Behaviour for an Epoxy-Aramid System
Roman, Igor
Ciortan, Sorin
Birsan, Iulian Gabriel
MATERIALE PLASTICE, 2015, 52 (03) : 388 - 392

← 1 2 3 4 5 →