• DocumentCode
    3302912
  • Title

    Real time network anomaly detection using relative entropy

  • Author

    Altaher, Altyeb ; Ramadass, Sureswaran ; Almomani, Ammar

  • Author_Institution
    Nat. Adv. IPv6 Center of Excellence, Univ. Sains Malaysia, Minden, Malaysia
  • fYear
    2011
  • fDate
    19-21 Dec. 2011
  • Firstpage
    258
  • Lastpage
    260
  • Abstract
    As the computer networks continue to increase in size, complexity and importance, the network security issue becomes more and more important. In this paper, we propose a real time anomaly detection system based on relative entropy. The proposed system captures the network traffic packets and then uses relative entropy and adaptive filter to dynamically determine the traffic changes and to examine whether the traffic change is normal or contains anomaly. Our experimental results show that the proposed system is efficient for on-line anomaly detection, using traffic trace collected in high-speed links.
  • Keywords
    computer network security; entropy; computer network; network security; real time anomaly detection system; real time network anomaly detection; relative entropy; traffic trace; Cryptography; Entropy; Grippers; Internet; Presses; Network security; anomaly detection; entropy theory;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    High Capacity Optical Networks and Enabling Technologies (HONET), 2011
  • Conference_Location
    Riyadh
  • Print_ISBN
    978-1-4577-1170-1
  • Type

    conf

  • DOI
    10.1109/HONET.2011.6149829
  • Filename
    6149829