| Presentation | 2008-03-06 Online Method For Detecting High Packet-Rate Flows Takanori KUDO, Tetsuya TAKINE, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | We present an online method which detects high packet-rate flows, such as DDoS attack flows, ensuring scalability. In our method, we collect traffic data by random packet-sampling to ensure scalability. At the same time, we use a sliding window technique in order to realize online detection when we renew sampled data which we have to examine. In this method, we have to determine the values of control parameters, such as the sampling rate and window size, to minimize the probability of the wrong detection, while keeping the probability of the detection error sufficiently low. We formulated the problem of determining control parameters as a nonlinear programming problem with constraints such as a permissible ratio of detection errors and permissible time for detection, and provide a way to determine the optimal control parameters. we then evaluate this method using measured traffic data and confirm that this method works well as designed. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Anomaly Detection / Packet Sampling / Sliding Window Technique / Nonlinear Programming Problem |
| Paper # | IN2007-165 |
| Date of Issue |
| Conference Information | |
| Committee | IN |
|---|---|
| Conference Date | 2008/2/28(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information Networks (IN) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Online Method For Detecting High Packet-Rate Flows |
| Sub Title (in English) | |
| Keyword(1) | Anomaly Detection |
| Keyword(2) | Packet Sampling |
| Keyword(3) | Sliding Window Technique |
| Keyword(4) | Nonlinear Programming Problem |
| 1st Author's Name | Takanori KUDO |
| 1st Author's Affiliation | Graduate School of Engineering, Osaka University() |
| 2nd Author's Name | Tetsuya TAKINE |
| 2nd Author's Affiliation | Graduate School of Engineering, Osaka University |
| Date | 2008-03-06 |
| Paper # | IN2007-165 |
| Volume (vol) | vol.107 |
| Number (no) | 525 |
| Page | pp.pp.- |
| #Pages | 6 |
| Date of Issue | |