Event storm detection and identification in communication systems |
| |
Authors: | Mouayad Bruce Martha |
| |
Affiliation: | aMotorola, Inc., 1301 E. Algonquin Rd., Room #3346, Schaumburg, IL 60196, USA;bMotorola, Inc., 50 Northwest Point Blvd., Elk Grove Village, IL 60007, USA;cComputer Science Department, Illinois Institute of Technology, 10 W. 31st St., Chicago, IL 60616, USA |
| |
Abstract: | Event storms are the manifestation of an important class of abnormal behaviors in communication systems. They occur when a large number of nodes throughout the system generate a set of events within a small period of time. It is essential for network management systems to detect every event storm and identify its cause, in order to prevent and repair potential system faults.This paper presents a set of techniques for the effective detection and identification of event storms in communication systems. First, we introduce a new algorithm to synchronize events to a single node in the system. Second, the system's event log is modeled as a normally distributed random process. This is achieved by using data analysis techniques to explore and then model the statistical behavior of the event log. Third, event storm detection is proposed using a simple test statistic combined with an exponential smoothing technique to overcome the non-stationary behavior of event logs. Fourth, the system is divided into non-overlapping regions to locate the main contributing regions of a storm. We show that this technique provides us with a method for event storm identification. Finally, experimental results from a commercially deployed multimedia communication system that uses these techniques demonstrate their effectiveness. |
| |
Keywords: | Event storms Exploratory data analysis Fault detection Fault identification Fault management Network management Wireless networks |
本文献已被 ScienceDirect 等数据库收录! |
|