DocumentCode :
2150068
Title :
RiskRank: Security risk ranking for IP flow records
Author :
Wang, Shaonan ; State, Radu ; Ourdane, Mohamed ; Engel, Thomas
Author_Institution :
Univ. of Luxembourg, Luxembourg, Luxembourg
fYear :
2010
fDate :
25-29 Oct. 2010
Firstpage :
56
Lastpage :
63
Abstract :
This paper considers the monitoring of large volumes of IP flow records, typically encountered on large ISP backbone/edge routers. The approach described in our paper aims to detect relevant flow records, where relevancy is related to overall traffic activity and associated applications. The core contribution of the paper consists in a dependency graph that leverages relationships between hosts, as well as flow-specific risk modeling. The risk model is constructed using well-known link analysis algorithms and application-specific signatures.
Keywords :
security of data; IP flow records; RiskRank; application-specific signatures; link analysis algorithms; security risk ranking; Analytical models; IP networks; Joining processes; Monitoring; Peer to peer computing; Protocols; Web pages;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Network and Service Management (CNSM), 2010 International Conference on
Conference_Location :
Niagara Falls, ON
Print_ISBN :
978-1-4244-8910-7
Electronic_ISBN :
978-1-4244-8908-4
Type :
conf
DOI :
10.1109/CNSM.2010.5691334
Filename :
5691334
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2150068
بازگشت