Title :
When randomness improves the anomaly detection performance
Author :
Callegari, Christian ; Gazzarrini, Loris ; Giordano, Stefano ; Pagano, Michele ; Pepe, Teresa
Author_Institution :
Dept. of Inf. Eng., Univ. of Pisa, Pisa, Italy
Abstract :
The increasing number of network attacks causes growing problems for network operators and users. Thus, detecting anomalous traffic is of primary interest in IP networks management. The problem has been faced by many researchers, but still remains an open field, since a general solution has not been found yet. In this paper we want to demonstrate as the performance of well-known methods for network anomaly detection can be improved, by performing a random aggregation of the data, before looking for the anomalies. In more detail, we show that, in two distinct cases (chosen as representative of the state-of-the-art in the field) the use of the sketches strongly improves the achieved performance.
Keywords :
IP networks; computer network management; telecommunication security; telecommunication traffic; IP networks management; anomalous traffic; network anomaly detection; network attacks; random aggregation;
Conference_Titel :
Applied Sciences in Biomedical and Communication Technologies (ISABEL), 2010 3rd International Symposium on
Conference_Location :
Rome
Print_ISBN :
978-1-4244-8131-6
DOI :
10.1109/ISABEL.2010.5702782
