DocumentCode :
3302912
Title :
Real time network anomaly detection using relative entropy
Author :
Altaher, Altyeb ; Ramadass, Sureswaran ; Almomani, Ammar
Author_Institution :
Nat. Adv. IPv6 Center of Excellence, Univ. Sains Malaysia, Minden, Malaysia
fYear :
2011
fDate :
19-21 Dec. 2011
Firstpage :
258
Lastpage :
260
Abstract :
As the computer networks continue to increase in size, complexity and importance, the network security issue becomes more and more important. In this paper, we propose a real time anomaly detection system based on relative entropy. The proposed system captures the network traffic packets and then uses relative entropy and adaptive filter to dynamically determine the traffic changes and to examine whether the traffic change is normal or contains anomaly. Our experimental results show that the proposed system is efficient for on-line anomaly detection, using traffic trace collected in high-speed links.
Keywords :
computer network security; entropy; computer network; network security; real time anomaly detection system; real time network anomaly detection; relative entropy; traffic trace; Cryptography; Entropy; Grippers; Internet; Presses; Network security; anomaly detection; entropy theory;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
High Capacity Optical Networks and Enabling Technologies (HONET), 2011
Conference_Location :
Riyadh
Print_ISBN :
978-1-4577-1170-1
Type :
conf
DOI :
10.1109/HONET.2011.6149829
Filename :
6149829
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3302912
بازگشت