Title :
Anomaly detection in IP networks
Author :
Thottan, Marina ; Ji, Chuanyi
Author_Institution :
Dept. of Networking Software Res., Bell Labs., Holmdel, NJ, USA
Abstract :
Network anomaly detection is a vibrant research area. Researchers have approached this problem using various techniques such as artificial intelligence, machine learning, and state machine modeling. In this paper, we first review these anomaly detection methods and then describe in detail a statistical signal processing technique based on abrupt change detection. We show that this signal processing technique is effective at detecting several network anomalies. Case studies from real network data that demonstrate the power of the signal processing approach to network anomaly detection are presented. The application of signal processing techniques to this area is still in its infancy, and we believe that it has great potential to enhance the field, and thereby improve the reliability of IP networks.
Keywords :
adaptive signal processing; autoregressive processes; eigenvalues and eigenfunctions; statistical analysis; telecommunication network reliability; IP networks; abrupt change detection; anomaly detection; reliability; statistical signal processing technique; Artificial intelligence; Communication system traffic control; IP networks; Intelligent networks; Machine learning; Network synthesis; Probes; Protocols; Signal processing; Signal synthesis;
Journal_Title :
Signal Processing, IEEE Transactions on
DOI :
10.1109/TSP.2003.814797
