A fast and accurate threat detection and prevention architecture using stream processing

Lobato, Antonio Gonzalez Pastana; Lopez, Martin Andreoni; Cárdenas, Álvaro A.; Duarte, Otto Carlos Muniz Bandeira; Pujolle, Guy

doi:10.1002/cpe.6561

Cited by 3 publications

(2 citation statements)

References 47 publications

(40 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Common big data real‐time stream computing systems such as Storm, 4 Spark Streaming 5 and Flink 6 play an important role in many fields, including online system monitoring, 7 mobile sensing data processing 8 and the Internet of Things, 9 financial risk control, 10 recommendation systems, 11 and threat detection 12 …”

Section: Introductionmentioning

confidence: 99%

“…Common big data real-time stream computing systems such as Storm, 4 Spark Streaming 5 and Flink 6 play an important role in many fields, including online system monitoring, 7 mobile sensing data processing 8 and the Internet of Things, 9 financial risk control, 10 recommendation systems, 11 and threat detection. 12 Storm is a relatively low latency real-time distributed stream processing framework that comes with a default scheduling scheme. Storm uses a pooling method in its allocation process, which often causes load skew.…”

mentioning

confidence: 99%

See 1 more Smart Citation

Lc‐Stream: An elastic scheduling strategy with latency constraints in geo‐distributed stream computing environments

Sun,

Wang,

Sui

et al. 2024

Concurrency and Computation

View full text Add to dashboard Cite

SummaryAn effective scheduling strategy is critical for achieving better performance in real‐time stream processing systems. How to quickly and efficiently process real‐time data stream is always challenging, especially when clusters are collaborating in a Geo‐Distributed computing environment. To address these challenges, we propose an elastic scheduling strategy with Latency Constraints in Geo‐Distributed stream computing environments called Lc‐Stream. This article discusses our work from the following aspects: (1) An optimized data stream redirection method that is proposed based on queuing network algorithm, along with a computing resource model, a latency constrained scheduling model and a communication energy consumption model. (2) An updated node selection method based on the inter‐layer task correlation, to reduce the communication latency between groups at the executor granularity. (3) A network cluster distribution for Geo‐Distributed computing environment to ensure energy saving under low transmission latency. Experimental results show that compared to R‐Storm, Lc‐Stream reduces total latency by over 19% and increases throughput by over 37% in typical cross‐domain multi‐task topologies. Compared to Ts‐Stream, Lc‐Stream also reduces total latency by over 15% and increases throughput by over 21%. At the same time, it helps to balance the load among the systems and avoid overuse of compute nodes.

show abstract

Section: Introductionmentioning

confidence: 99%

mentioning

confidence: 99%

Lc‐Stream: An elastic scheduling strategy with latency constraints in geo‐distributed stream computing environments

Sun,

Wang,

Sui

et al. 2024

Concurrency and Computation

View full text Add to dashboard Cite

show abstract

Micro-batch and data frequency for stream processing on multi-cores

et al. 2023

View full text Add to dashboard Cite

Latency or throughput are often critical performance metrics in stream processing. Applications' performance can fluctuate depending on the input stream. This unpredictability is tied to variations in data arrival frequency, data size, complexity, and other factors. Researchers are constantly investigating new ways to mitigate the impact of these variations on performance with self-adaptive techniques involving elasticity or micro-batching. However, there is a lack of benchmarks capable of creating test scenarios to further evaluate these techniques. This work extends and improves the SPBench benchmarking framework to support dynamic micro-batching and data stream frequency management. We also propose a set of algorithms that generate the most commonly used frequency patterns for benchmarking stream processing in related work. It allows the creation of a wide variety of test scenarios. To validate our solution, we use SPBench to create custom benchmarks and evaluate the impact of micro-batching and data stream Micro-batch and Data Frequency for Stream Processing on Multi-cores frequency on the performance of Intel TBB and FastFlow. These are two libraries that leverage stream parallelism for multi-core architectures. Our results demonstrated that most test cases benefited from micro-batches, especially high throughput applications with ordering constraints. For different data stream frequency configurations, TBB ensured the lowest latency, while FastFlow assured higher throughput in shorter pipelines.

show abstract

A Stream Learning Intrusion Detection System for Concept Drifting Network Traffic

Horchulhack

Viegas

Lopez

2022

2022 6th Cyber Security in Networking Conference (CSNet)

View full text Add to dashboard Cite

A fast and accurate threat detection and prevention architecture using stream processing

Cited by 3 publications

References 47 publications

Lc‐Stream: An elastic scheduling strategy with latency constraints in geo‐distributed stream computing environments

Lc‐Stream: An elastic scheduling strategy with latency constraints in geo‐distributed stream computing environments

Micro-batch and data frequency for stream processing on multi-cores

A Stream Learning Intrusion Detection System for Concept Drifting Network Traffic

Contact Info

Product

Resources

About