| Presentation | 2016-09-30 Identification Method of Communication between Components of Application system based on Connection Structure of Port Number for Anomaly Detection in Cloud Computing Takaya Ide, Hitoshi Yabusaki, Kyosuke Hashimoto, Junji Kinoshita, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Silent failure is a problem to maintain reliability for application systems. To detect silent failures, it is effective to measure and analyze communications between the components composing application. However, the communication between components is measured as communication between different components per TCP/UDP sessions, because the client side TCP/UDP port numbers is changed in connecting or disconnecting of session. The existing identification method based on the number of sessions that includes the port number increases misidentification when the communication has thousands to tens of thousands of sessions between the components. This study focuses on “Multi attributed port” which is generated by reuse of same port number again and again, as the cause of the misidentification, and proposes the method that identifies communications between components accurately by removing Multi attributed port by search the server ports in connection structure of the port number between sessions recursively. The evaluation shows the existing method misidentifies over 80% when the number of sessions exceeds 2000, but proposal method has no misidentification regardless the number of sessions. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Application system / Silent failure / Communication between components / Session / Port number |
| Paper # | NS2016-87 |
| Date of Issue | 2016-09-22 (NS) |
| Conference Information | |
| Committee | NS / CS / IN |
|---|---|
| Conference Date | 2016/9/29(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Tohoku Univ. |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | Post IP networking, Next Generation Network (NGN)/New Generation Network (NWGN), Contingency Plan/BCP, Network Coding/Network Algorithms, Session Management (SIP/IMS), Internetworking/Standardization, Network configuration, etc. |
| Chair | Hideki Tode(Osaka Pref. Univ.) / Tetsuya Yokotani(Kanazawa Inst. of Tech.) / Katsunori Yamaoka(Tokyo Inst. of Tech.) |
| Vice Chair | Yoshikatsu Okazaki(NTT) / Hidenori Nakazato(Waseda Univ.) / Takuji Kishida(NTT) |
| Secretary | Yoshikatsu Okazaki(Kyushu Inst. of Tech.) / Hidenori Nakazato(NTT) / Takuji Kishida(NTT) |
| Assistant | Shohei Kamamura(NTT) / / Kunitake Kaneko(Keio Univ.) / Takashi Natsume(NTT) |
| Paper Information | |
| Registration To | Technical Committee on Network Systems / Technical Committee on Communication Systems / Technical Committee on Information Networks |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Identification Method of Communication between Components of Application system based on Connection Structure of Port Number for Anomaly Detection in Cloud Computing |
| Sub Title (in English) | |
| Keyword(1) | Application system |
| Keyword(2) | Silent failure |
| Keyword(3) | Communication between components |
| Keyword(4) | Session |
| Keyword(5) | Port number |
| 1st Author's Name | Takaya Ide |
| 1st Author's Affiliation | Hitachi, Ltd.(Hitachi) |
| 2nd Author's Name | Hitoshi Yabusaki |
| 2nd Author's Affiliation | Hitachi, Ltd.(Hitachi) |
| 3rd Author's Name | Kyosuke Hashimoto |
| 3rd Author's Affiliation | Hitachi, Ltd.(Hitachi) |
| 4th Author's Name | Junji Kinoshita |
| 4th Author's Affiliation | Hitachi, Ltd.(Hitachi) |
| Date | 2016-09-30 |
| Paper # | NS2016-87 |
| Volume (vol) | vol.116 |
| Number (no) | NS-230 |
| Page | pp.pp.73-78(NS), |
| #Pages | 6 |
| Date of Issue | 2016-09-22 (NS) |