• DocumentCode
    566621
  • Title

    Anomaly detection using new MIB traffic parameters based on profile

  • Author

    Sangmee, Patthama ; Thanon, Nithi ; Elz, Nittida

  • Author_Institution
    Dept. of Comput. Sci., Prince of Songkla Univ., Songkhla, Thailand
  • Volume
    2
  • fYear
    2012
  • fDate
    24-26 April 2012
  • Firstpage
    648
  • Lastpage
    653
  • Abstract
    This paper present MIB+, which is an extension of the standard MIB adding parameters to create profiles for intrusion detection. These are based on the Anomaly Detection method to identify the type of intrusion to prevent or find the ways to defeat it. We conducted three experiments to detect a SYN flood attack, DNS flood attack and Null scan. The results are presented in the form of graphs to illustrate trends of network usage, both normal and abnormal.
  • Keywords
    Servers; Anomaly Detection; MIB+; Profile; SNMP;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computing Technology and Information Management (ICCM), 2012 8th International Conference on
  • Conference_Location
    Seoul, Korea (South)
  • Print_ISBN
    978-1-4673-0893-9
  • Type

    conf

  • Filename
    6268579
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=566621