An orchestration approach for unwanted Internet traffic identification

Eduardo Feitosa; Eduardo Souto; Djamel H. Sadok

首页> 外文期刊>Computer networks >An orchestration approach for unwanted Internet traffic identification

【24h】

An orchestration approach for unwanted Internet traffic identification

机译：不需要的Internet流量识别的编排方法

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

A simple examination of Internet traffic shows a wide mix of relevant and unwanted traffic. The latter is becoming increasingly harmful to network performance and service availability, while often consuming precious network and processing resources. Coordinated attacks, such as distributed denial-of-services (DDoS), large-scale scans, and worm outbreaks, occur in multiple networks simultaneously and become extremely difficult to detect using an individual detection engine. This paper presents the specification of a new orchestration-based approach to detect, and, as far as possible, to limit the actions of these coordinated attacks. Core to the proposal is a framework that coordinates the receiving of a multitude of alerts and events from detectors, evaluates this input to detect or prove the existence of anomalies, and consequently chooses the best action course. This framework is named Orchestration-oriented Anomaly Detection System (OADS). We also describe an OADS prototype implementation of the proposed infrastructure and analyze initial results obtained through experimentation with this prototype.

机译：对Internet流量的简单检查显示，相关流量和有害流量之间存在广泛的混合。后者对网络性能和服务可用性的危害越来越大，同时经常消耗宝贵的网络和处理资源。协同攻击，例如分布式拒绝服务（DDoS），大规模扫描和蠕虫爆发，会同时在多个网络中发生，并且使用单个检测引擎进行检测变得极为困难。本文介绍了一种新的基于业务流程的方法的规范，该方法可以检测并尽可能限制这些协同攻击的行为。该提案的核心是一个框架，该框架协调从检测器接收大量警报和事件，评估此输入以检测或证明异常的存在，并因此选择最佳的操作过程。该框架称为面向业务流程的异常检测系统（OADS）。我们还描述了所提议基础结构的OADS原型实现，并分析了通过对该原型进行试验获得的初步结果。

著录项

来源
《Computer networks》 |2012年第12期|p.2805-2831|共27页
作者
Eduardo Feitosa; Eduardo Souto; Djamel H. Sadok;
展开▼
作者单位

Informatics Center, Federal University of Pemambuco, 50740-540 Recife Pemambuco, Brazil,Institute of Computing, Federal University of Amazonas, 69077-000 Manaus Amazonas, Brazil;

Institute of Computing, Federal University of Amazonas, 69077-000 Manaus Amazonas, Brazil;

Informatics Center, Federal University of Pemambuco, 50740-540 Recife Pemambuco, Brazil;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
unwanted internet traffic; orchestration; alert correlation; frequent episodes discovery; dempster-shafer theory;

机译：不必要的互联网流量;编排警报关联;频繁发现情节;德姆斯特-谢弗理论;

相似文献

外文文献
中文文献
专利

1. Addressing Unwanted Traffic on the Internet: A Community Response [J] . Ford Mat, Daigle Leslie Internet Computing, IEEE . 2009,第6期

机译：解决互联网上不必要的流量：社区的回应
2. A novel internet traffic identification approach using wavelet packet decomposition and neural network [J] . TAN Jun, CHEN Xing-shu, DU Min, 中南大学学报（英文版） . 2012,第008期

机译：基于小波包分解和神经网络的互联网流量识别新方法
3. An Internet Traffic Identification Approach Based on GA and PSO-SVM [J] . Jun Tan, Xingshu Chen, Min Du Journal of Computers . 2012,第1期

机译：基于GA和PSO-SVM的互联网流量识别方法
4. The Effect of Unwanted Internet Traffic on Cellular Phone Energy Consumption [C] . Puustinen I., Nurminen J.K. 2011 4th IFIP International Conference on New Technologies, Mobility and Security . 2011

机译：不必要的互联网流量对手机能耗的影响
5. Adaptive controller design for Internet traffic: A control theoretical approach. [D] . Hong, Yang. 2006

机译：互联网流量的自适应控制器设计：一种控制理论方法。
6. A traffic control role for TGFβ3: orchestrating dermal and epidermal cell motility during wound healing [O] . Balaji Bandyopadhyay, Jianhua Fan, Shengxi Guan, 2006

机译：TGFβ3的交通控制作用：在伤口愈合过程中协调皮肤和表皮细胞运动
7. Identifying and modeling unwanted traffic on the Internet [O] . Soto Paul M. Eng. Massachusetts Institute of Technology 2006

机译：识别和建模Internet上不需要的流量

An orchestration approach for unwanted Internet traffic identification

摘要

著录项

相似文献

相关主题

期刊订阅