Sciweavers

APNOMS
2006
Springer

Detecting and Identifying Network Anomalies by Component Analysis

14 years 3 months ago
Detecting and Identifying Network Anomalies by Component Analysis
Many research works address detection and identification of network anomalies using traffic analysis. This paper considers large topologies, such as those of an ISP, with traffic analysis performed on multiple links simultaneously. This is made possible by using a combination of simple online traffic parameters and specific data from headers of selective packets. Even though large networks may have many network links and a lot of traffic, the analysis is simplified with the usage of Principal Component Analysis (PCA) subspace method. The proposed method proves that aggregation of such traffic profiles on large topologies allows identification of a certain set of anomalies with high level of certainty.
Le The Quyen, Marat Zhanikeev, Yoshiaki Tanaka
Added 20 Aug 2010
Updated 20 Aug 2010
Type Conference
Year 2006
Where APNOMS
Authors Le The Quyen, Marat Zhanikeev, Yoshiaki Tanaka
Comments (0)