Network anomalies refer to situations when observed network traffic deviate from normal network behaviour. In this paper, we propose a general framework which assumes the use of many different attack detection methods and show a way to integrate their results. We checked our approach by the use of network topology analysis methods applied to communication graphs. Based on this evaluation, we have proposed a measure called the AttackScore, which assesses the risk of an on-going attack and distinguishes between the effectiveness of the analytic measures used to detect it. © 2012 Springer-Verlag.
CITATION STYLE
Kolaczek, G., & Juszczyszyn, K. (2012). Traffic pattern analysis for distributed anomaly detection. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7204 LNCS, pp. 648–657). https://doi.org/10.1007/978-3-642-31500-8_67
Mendeley helps you to discover research relevant for your work.