Detecting network intrusions via a statistical analysis of network packet characteristics

“…Much of the work in this area models normal network behaviour so that behaviour that does not satisfy the constraints of normal network behaviour is assumed to be caused by intrusion. Examples of this work include [1].…”

Section: Related Workmentioning

confidence: 99%

“…We developed a QoS management system [6] that deals with soft and dynamic QoS requirements by providing management services (implemented by a set of management processes and resource managers that support the following: (1) Detecting that an application's run-time behaviour does not satisfy the application's QoS requirements. This violation of QoS requirements (also called a symptom) is a manifestation of a fault in the system.…”

Section: Introductionmentioning

confidence: 99%

Predicting Violations of QoS Requirements in Distributed Systems

Taylor

Lutfiyya

2003

Management of Multimedia Networks and Services

View full text Add to dashboard Cite

Abstract. A Quality of Service (QoS) requirement refers to a nonfunctional requirement such as performance. A QoS management system allocates and schedules computing resources. A dynamic QoS management system is one that dynamically allocates resources to an application during its lifetime. This is usually done when the application has a QoS requirement that is not being satisfied at run-time. Ideally, the QoS management system is able to predict when the QoS requirement will be violated before it is violated. This paper describes an approach to prediction and hows shows how this was applied to a case study.

show abstract

“…Up till now the basic idea of network anomaly discriminant lies in anomaly detection method, provided by Denning in 1987 [1]. That is to say, according to abnormality situations of audit statement in monitoring system, the bad behaviors (i.e.…”

Section: Introductionmentioning

confidence: 99%

A Discriminant Model of Network Anomaly Behavior Based on Fuzzy Temporal Inference

He¹

2012

IJACSA

View full text Add to dashboard Cite

Abstract-The aim of this paper is to provide an active inference algorithm for anomalous behavior. As a main concept we introduce fuzzy temporal consistency covering set, and put forward a fuzzy temporal selection model based on temporal inference and covering technology. Fuzzy set is used to describe network anomaly behavior omen and character, as well as the relations between behavior omen and character. We set up a basic monitoring framework of anomalous behaviors by using causality inference of network behaviors, and then provide a recognition method of network anomaly behavior character based on hypothesis graph search. As shown in the example, the monitoring algorithm has certain reliability and operability.

show abstract

Detecting network intrusions via a statistical analysis of network packet characteristics

Cited by 33 publications

References 3 publications

Anomaly detection methods in wired networks: a survey and taxonomy

Anomaly detection methods in wired networks: a survey and taxonomy

Predicting Violations of QoS Requirements in Distributed Systems

A Discriminant Model of Network Anomaly Behavior Based on Fuzzy Temporal Inference

Contact Info

Product

Resources

About