• DocumentCode
    3056167
  • Title

    A Real-Time Network Traffic Profiling System

  • Author

    Xu, Kuai ; Wang, Feng ; Bhattacharyya, Supratik ; Zhang, Zhi-Li

  • Author_Institution
    Yahoo! Inc., Sunnyvale
  • fYear
    2007
  • fDate
    25-28 June 2007
  • Firstpage
    595
  • Lastpage
    605
  • Abstract
    This paper presents the design and implementation of a real-time behavior profiling system for high-speed Internet links. The profiling system uses flow-level information from continuous packet or flow monitoring systems, and uses data mining and information-theoretic techniques to automatically discover significant events based on the communication patterns of end-hosts. We demonstrate the operational feasibility of the system by implementing it and performing extensive benchmarking of CPU and memory costs using a variety of packet traces from OC-48 links in an Internet backbone network. To improve the robustness of this system against sudden traffic surges such as those caused by denial of service attacks or worm outbreaks, we propose a simple yet effective filtering algorithm. The proposed algorithm successfully reduces the CPU and memory cost while maintaining high profiling accuracy.
  • Keywords
    data mining; continuous packet; data mining; flow monitoring systems; real-time network traffic profiling system; Computerized monitoring; Costs; Data mining; IP networks; Internet; Real time systems; Robustness; Spine; Surges; Telecommunication traffic;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Dependable Systems and Networks, 2007. DSN '07. 37th Annual IEEE/IFIP International Conference on
  • Conference_Location
    Edinburgh
  • Print_ISBN
    0-7695-2855-4
  • Type

    conf

  • DOI
    10.1109/DSN.2007.10
  • Filename
    4273010
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3056167