Title :
Analysing network-wide anomalies using dependency graphs and baseline
Author :
Amaral, Alexandre A. ; Zarpelão, Bruno B. ; Rodrigues, Joel J P C ; Mendes, Leonardo S. ; Proença, Mario Lemes, Jr.
Author_Institution :
Sch. of Electr. & Comput. Eng., Univ. of Campinas (UNICAMP), Campinas, Brazil
Abstract :
In this paper, it is presented a solution that performs the alarm correlation based in the dependencies between the network devices using baseline or digital signature of network segment (DSNS). The main objective of this work is to provide a network-wide view, showing its global status instead of just presenting the various alarms generated individually for different network elements. A dependency graph is used in order to correlate these alarms, increasing the semantic content of resulting notifications. Besides, we also present a visual approach for the network administrator, which reflects the network global status, enabling network administrators to visualize the anomaly propagation in the network. Tests were performed in the State University of Londrina network and the results of the experiments have been widely satisfactory.
Keywords :
digital signatures; graph theory; telecommunication networks; telecommunication security; State University of Londrina network; alarm correlation; baseline signature; dependency graphs; digital signature; network segment; network-wide anomalies; Alarm systems; Correlation; Fires; Hidden Markov models; Internet; Monitoring; Visualization;
Conference_Titel :
Software, Telecommunications and Computer Networks (SoftCOM), 2010 International Conference on
Conference_Location :
Split, Dubrovnik
Print_ISBN :
978-1-4244-8663-2
Electronic_ISBN :
978-953-290-004-0
