期刊名称:International Journal of Computer Science and Network Security
印刷版ISSN:1738-7906
出版年度:2007
卷号:7
期号:9
页码:116-122
出版社:International Journal of Computer Science and Network Security
摘要:Malicious traffic such as denial of service (DoS) attack has potential to introduce distribution error and perturbs the self-similarity property of network traffic. As a result, loss of self-similarity (LoSS) is detected which indicates poor quality of service (QoS) performance. In order to fulfill the demand for high speed and detection accuracy, this paper proposes LoSS detection method with second order self-similarity statistical (SOSS) model and estimates the self-similarity parameter using the optimization method (OM). We investigate the behavior of self-similarity property for normal and abnormal traffic traces with different sampling levels. We test our approach using synthetic and real traffic simulation datasets. The results demonstrate that the proposed method has successfully exposed the abnormality of Internet traffic behavior. However, the experimental results show that fixed sampling level is not sufficient to reveal the self-similarity distribution error accurately. Accordingly, we introduce a new set of multi-level sampling parameters and propose a new LoSS detection method with multi-level sampling approach in order to improve the detection accuracy.
关键词:Anomaly Detection; Loss of Self-Similarity; Second Order Self-Similarity model; Multi-Level Sampling
Loading...
