A Network Traffic Supervision System Based on Feature Parameters Distribution

Author

Du, Xin ; Yang, Yingjie ; Kang, Xiaowen

Author_Institution

Inst. of Electron. Technol., PLA Inf. Eng. Univ., Zhengzhou

fYear

2008

fDate

18-20 June 2008

Firstpage

377

Lastpage

377

Abstract

At the present time, most existing network traffic supervision systems just focus on the traffic volume, which leads to a wealth of information contained in this data source being not mined well. In view of this situation, this paper utilizes entropy to capture the distribution change of network traffic feature parameters such as source IP, destination IP and destination port, and analyses the network traffic from this point of view. The method which adopts the change of the network traffic feature parameters distribution to discover anomalies is different from previous methods which pay more attention to the volume of the traffic. By using this method, we can capture the microscopical anomalies. Finally, we use this method to implement such a supervision system and the experimental result shows that the system pattern which analyzes both volume and feature parameters distribution of traffic has a higher detecting rate and lower false rate.

Keywords

entropy; telecommunication network management; telecommunication traffic; entropy; feature parameters distribution; microscopical anomalies; network traffic supervision system; Communication system traffic control; Data engineering; Entropy; Marine technology; Microscopy; Monitoring; Pattern analysis; Programmable logic arrays; Telecommunication traffic; Traffic control;

fLanguage

English

Publisher

ieee

Conference_Titel

Innovative Computing Information and Control, 2008. ICICIC '08. 3rd International Conference on

Conference_Location

Dalian, Liaoning

Print_ISBN

978-0-7695-3161-8

Electronic_ISBN

978-0-7695-3161-8

Type

conf

DOI

10.1109/ICICIC.2008.49

Filename

4603566