| 网络攻击检测中基于RTFF的大容量数据管理 |
| |
| 作者姓名: | Abhrajit Ghosh Yitzchak M. Gottlieb Aditya Naidu Akshay Vashist Alexander Poylisher Ayumu Kubota Yukiko Sawaya Akira Yamada |
| |
| 摘 要: |
|
| 收稿时间: | 2013-03-27; |
Managing High Volume Data for Network Attack Detection Using Real-Time Flow Filtering |
| |
| Abhrajit Ghosh,Yitzchak M. Gottlieb,Aditya Naidu,Akshay Vashist,Alexander Poylisher,Ayumu Kubota,Yukiko Sawaya,Akira Yamada.Managing High Volume Data for Network Attack Detection Using Real-Time Flow Filtering[J].China communications magazine,2013,10(3):56-66. |
| |
| Authors: | Abhrajit Ghosh Yitzchak M Gottlieb Aditya Naidu Akshay Vashist Alexander Poylisher Ayumu Kubota Yukiko Sawaya Akira Yamada |
| |
| Affiliation: | 1Applied Communication Sciences, 150 Mount Airy Road, Basking Ridge, NJ 07920, USA
2KDDI R&D Laboratories, 2-1-15 Ohara Fujimino-shi, Saitama 356-8502, Japan |
| |
| Abstract: | In this paper, we present Real-Time Flow Filter (RTFF) —a system that adopts a middle ground between coarse-grained volume anomaly detection and deep packet in-spection. RTFF was designed with the goal of scaling to high volume data feeds that are common in large Tier-1 ISP networks and providing rich, timely information on ob-served attacks. It is a software solution that is designed to run on off-the-shelf hardware platforms and incorporates a scalable data processing architecture along with lightweight analysis algorithms that make it suitable for deployment in large networks. RTFF also makes use of state of the art machine learning algorithms to construct attack models that can be used to detect as well as predict attacks. |
| |
| Keywords: | network security intrusion detection scaling |
|
| 点击此处可从《中国通信学报》浏览原始摘要信息 |
|
点击此处可从《中国通信学报》下载全文 |
|
