An Evaluation of the Effectiveness of Measurement-based Anomaly Detection Techniques

I
ICDCSW
2006
26th IEEE International Conference on Distributed Computing Systems Workshops (ICDCSW'06)
Abstract - An Evaluation of the Effectiveness of Measurement-based Anomaly Detection Techniques

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Seong Soo Kim Articles by A. L. Narasimha Reddy

26th IEEE International Conference on Distributed Computing Systems Workshops (ICDCSW'06)

Lisboa, Portugal

July 04-July 07

ISBN: 0-7695-2541-5

	ASCII Text	x
	Seong Soo Kim, A. L. Narasimha Reddy, "An Evaluation of the Effectiveness of Measurement-based Anomaly Detection Techniques," Distributed Computing Systems Workshops, International Conference on, pp. 6, 26th IEEE International Conference on Distributed Computing Systems Workshops (ICDCSW'06), 2006.

	BibTex	x
	@article{ 10.1109/ICDCSW.2006.16, author = {Seong Soo Kim and A. L. Narasimha Reddy}, title = {An Evaluation of the Effectiveness of Measurement-based Anomaly Detection Techniques}, journal ={Distributed Computing Systems Workshops, International Conference on}, volume = {0}, year = {2006}, issn = {1545-0678}, pages = {6}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICDCSW.2006.16}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Distributed Computing Systems Workshops, International Conference on TI - An Evaluation of the Effectiveness of Measurement-based Anomaly Detection Techniques SN - 1545-0678 SP EP A1 - Seong Soo Kim, A1 - A. L. Narasimha Reddy, PY - 2006 KW - null VL - 0 JA - Distributed Computing Systems Workshops, International Conference on ER -

Seong Soo Kim, Texas A&M University, College Station, TX, USA

A. L. Narasimha Reddy, Texas A&M University, College Station, TX, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICDCSW.2006.16

A number of recent studies have proposed measurement based approaches to network traffic analysis. These techniques treat traffic volume and traffic header data as signals or images in order to make analysis feasible. We use trace-driven experiments and compare the performance of different strategies. Our evaluations on real traces reveal differences in the effectiveness of different traffic header data as potential signals for traffic analysis in terms of their detection rates and false alarm rates. Our results show that address distributions and number of flows are better signals than traffic volume for anomaly detection.

Citation:

Seong Soo Kim, A. L. Narasimha Reddy, "An Evaluation of the Effectiveness of Measurement-based Anomaly Detection Techniques," icdcsw, pp.6, 26th IEEE International Conference on Distributed Computing Systems Workshops (ICDCSW'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.