Traffic Summary Analysis for Network Abuse Detection in High Date-Rate ISP Networks

I
ICN
2007
Sixth International Conference on Networking (ICN'07)
Abstract - Traffic Summary Analysis for Network Abuse Detection in High Date-Rate ISP Networks

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by P. Sandford Articles by D.J. Parish Articles by J.M. Sandford

Sixth International Conference on Networking (ICN'07)

Sainte-Luce, Martinique, France

April 22-April 28

ISBN: 0-7695-2805-8

	ASCII Text	x
	P. Sandford, D.J. Parish, J.M. Sandford, "Traffic Summary Analysis for Network Abuse Detection in High Date-Rate ISP Networks," International Conference on Networking, pp. 100, Sixth International Conference on Networking (ICN'07), 2007.

	BibTex	x
	@article{ 10.1109/ICN.2007.101, author = {P. Sandford and D.J. Parish and J.M. Sandford}, title = {Traffic Summary Analysis for Network Abuse Detection in High Date-Rate ISP Networks}, journal ={International Conference on Networking}, volume = {0}, year = {2007}, isbn = {0-7695-2805-8}, pages = {100}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICN.2007.101}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - International Conference on Networking TI - Traffic Summary Analysis for Network Abuse Detection in High Date-Rate ISP Networks SN - 0-7695-2805-8 SP EP A1 - P. Sandford, A1 - D.J. Parish, A1 - J.M. Sandford, PY - 2007 KW - Denial of Service; Intrusion Detection; Core Network Monitoring; VL - 0 JA - International Conference on Networking ER -

P. Sandford, Loughborough University, UK

D.J. Parish, Loughborough University, UK

J.M. Sandford, Loughborough University, UK

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICN.2007.101

The recent explosion in bandwidth available to home users has caused traffic rates for commercial national networks to increasing rapidly. This presents a problem for any core network monitoring tool as the traffic rate it is expected to monitor is rising on a monthly basis. Security within these networks is paramount as they are now a stable home of trade and commerce. This paper suggests that the use of summary statistics, gathered over a number of packets, is a sensible way of coping with high data rates. We further present a methodology for discovering which metrics are appropriate for classifying significant network events and demonstrate this in a test environment. Finally we show how the statistical variance found in the test environment matches to those found in a National network core.

Index Terms:

Denial of Service; Intrusion Detection; Core Network Monitoring;

Citation:

P. Sandford, D.J. Parish, J.M. Sandford, "Traffic Summary Analysis for Network Abuse Detection in High Date-Rate ISP Networks," icn, pp.100, Sixth International Conference on Networking (ICN'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.