• DocumentCode
    2150068
  • Title

    RiskRank: Security risk ranking for IP flow records

  • Author

    Wang, Shaonan ; State, Radu ; Ourdane, Mohamed ; Engel, Thomas

  • Author_Institution
    Univ. of Luxembourg, Luxembourg, Luxembourg
  • fYear
    2010
  • fDate
    25-29 Oct. 2010
  • Firstpage
    56
  • Lastpage
    63
  • Abstract
    This paper considers the monitoring of large volumes of IP flow records, typically encountered on large ISP backbone/edge routers. The approach described in our paper aims to detect relevant flow records, where relevancy is related to overall traffic activity and associated applications. The core contribution of the paper consists in a dependency graph that leverages relationships between hosts, as well as flow-specific risk modeling. The risk model is constructed using well-known link analysis algorithms and application-specific signatures.
  • Keywords
    security of data; IP flow records; RiskRank; application-specific signatures; link analysis algorithms; security risk ranking; Analytical models; IP networks; Joining processes; Monitoring; Peer to peer computing; Protocols; Web pages;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Network and Service Management (CNSM), 2010 International Conference on
  • Conference_Location
    Niagara Falls, ON
  • Print_ISBN
    978-1-4244-8910-7
  • Electronic_ISBN
    978-1-4244-8908-4
  • Type

    conf

  • DOI
    10.1109/CNSM.2010.5691334
  • Filename
    5691334
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2150068