Network traffic anomaly detection using machine learning approaches

Author

Limthong, Kriangkrai ; Tawsook, Thidarat

Author_Institution

Grad. Univ. for Adv. Studies (Sokendai), Tokyo, Japan

fYear

2012

fDate

16-20 April 2012

Firstpage

542

Lastpage

545

Abstract

One of the biggest challenges for both network administrators and researchers is detecting anomalies in network traffic. If they had a tool that could accurately and expeditiously detect these anomalies, they would prevent many of the serious problems caused by them. We conducted experiments in order to study the relationship between interval-based features of network traffic and several types of network anomalies by using two famous machine learning algorithms: the naıve Bayes and k-nearest neighbor. Our findings will help researchers and network administrators to select effective interval-based features for each particular type of anomaly, and to choose a proper machine learning algorithm for their own network system.

Keywords

computer networks; learning (artificial intelligence); security of data; telecommunication traffic; interval-based features; machine learning approaches; network administrators; network researchers; network traffic anomaly detection; Classification algorithms; Feature extraction; Intrusion detection; Machine learning; Machine learning algorithms; Signal processing algorithms; Testing; anomaly detection; machine learning; naïve Bayes; nearest neighbor; network traffic analysis; time interval;

fLanguage

English

Publisher

ieee

Conference_Titel

Network Operations and Management Symposium (NOMS), 2012 IEEE

Conference_Location

Maui, HI

ISSN

1542-1201

Print_ISBN

978-1-4673-0267-8

Electronic_ISBN

1542-1201

Type

conf

DOI

10.1109/NOMS.2012.6211951

Filename

6211951