An Integrative System for Deep Packet Inspection and Network Anomaly Detection & Defense

Author

Zhu Hongliang ; Bin Tian ; Fei Wang ; Yang Xin ; Yang, Xin

Author_Institution

Inf. Security Center, Beijing Univ. of Posts & Telecommun., Beijing, China

fYear

2011

Firstpage

1

Lastpage

4

Abstract

In this paper, we proposed a security system which can accomplish several various functions. The primary applications of this system includes: (1) lawful interception for the data of voip, email, instant message and other kinds of data; (2) filtering abnormality data packages; (3) blocking the illegal URL or sites; (4) performing net traffic and flow analysis and user behavior analysis; (5) doing network bandwidth monitoring, DDOS traffic cleaning; (6) SPAM filtering and so on. All the problems we involved are the most concerned by the operators engaged in telecommunication. The system architecture and the function we designed are based on the research of Lawful Interception (ETSI).

Keywords

Internet telephony; computer network security; information filtering; telecommunication traffic; unsolicited e-mail; DDOS traffic cleaning; SPAM filtering; VoIP; abnormality data package filtering; deep packet inspection; email; illegal URL blocking; illegal site blocking; instant message; integrative system; lawful data interception; net traffic analysis; network anomaly detection; network bandwidth monitoring; network defense; security system; user behavior analysis; Bandwidth; IP networks; Information filters; Internet; Security; Telecommunication standards;

fLanguage

English

Publisher

ieee

Conference_Titel

Wireless Communications, Networking and Mobile Computing (WiCOM), 2011 7th International Conference on

Conference_Location

Wuhan

ISSN

2161-9646

Print_ISBN

978-1-4244-6250-6

Type

conf

DOI

10.1109/wicom.2011.6040151

Filename

6040151