Title :
Exploiting causality and communication patterns in network data analysis
Author :
Pietikäinen, Pekka ; Viide, Joachim ; Röning, Juha
Author_Institution :
Secure Programming Group, Univ. of Oulu, Oulu
Abstract :
Detecting the root-cause of failures in modern, complex networks is tedious. Understanding the problem fully requires good instrumentation and thorough understanding of the information flows in the network. In this paper, we describe two techniques for understanding the information flows and pinpointing the problems in them: causal relationship extraction and communication pattern detection. We instrumented a network with probes. The probes collect all the data from the network into a ringbuffer and index it, making it possible to either quickly retrieve flows and packets associated to them for further analysis. Our software then extracts and visualizes causal relationships between the events. The causal relationship extraction and communication pattern detection proved to be an effective method for pinpointing the cause of network system failures, understanding security risks and managing complexity. Our research prototype demonstrates a method for making problem solving faster and more systematic. The methods can also be used to detect emerging problems proactively.
Keywords :
causality; complex networks; computer network reliability; data analysis; pattern recognition; causal relationship extraction; communication pattern detection; communication patterns; complex networks; information flows; network data analysis; Communication system security; Complex networks; Data analysis; Data mining; Data visualization; Information retrieval; Instruments; Probes; Risk management; Software prototyping;
Conference_Titel :
Local and Metropolitan Area Networks, 2008. LANMAN 2008. 16th IEEE Workshop on
Conference_Location :
Chij-Napoca, Transylvania
Print_ISBN :
978-1-4244-2027-8
Electronic_ISBN :
978-1-4244-2028-5
DOI :
10.1109/LANMAN.2008.4675854
