Title :
Sketch-based multidimensional IDS: A new approach for network anomaly detection
Author :
Callegari, Christian ; Casella, Alessandro ; Giordano, Stefano ; Pagano, Mario ; Pepe, Teresa
Author_Institution :
Dept. of Inf. Eng., Univ. of Pisa, Pisa, Italy
Abstract :
The diffusion of technologies for high speed data transmission over the Internet and the growing employment of new multimedia services require fast and effective techniques for the protection against network attacks. In this paper we present a new approach able to detect at the same time different types of network anomalies. It consists in the simultaneous analysis of several traffic descriptors (aggregated through a sketch to guarantee the scalability of the algorithm) by means of a single vectorial algorithm. In terms of ROC curve, the performance of our multidimensional Intrusion Detection System (IDS) are comparable with the separate application of traditional monodimensional IDSs to all traffic parameters, while reducing the computational time of more than 80%.
Keywords :
Internet; security of data; sensitivity analysis; telecommunication traffic; vectors; Internet; ROC curve; high speed data transmission; multidimensional intrusion detection system; multimedia services; network anomalies; network attacks protection; single vectorial algorithm; sketch-based multidimensional IDS; traffic descriptors; traffic parameters; Conferences; Data models; Euclidean distance; Kernel; Probability density function; Security; Vectors;
Conference_Titel :
Communications and Network Security (CNS), 2013 IEEE Conference on
Conference_Location :
National Harbor, MD
DOI :
10.1109/CNS.2013.6682725
