期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

一种网络流量异常检测模型 被引量:1

A Model of Anomaly Network Flow Detection
下载PDF
导出
摘要 网络流量异常影响网络性能,严重时造成网络中断,在基于统计的网络流量异常检测模型基础上,本文提出一种改进的方法。首先对采样数据进行预处理,去除坏值;然后采用统计学方法对网络流量稳态模型进行建模和更新,选择表现流量特征明显、属性相关性小的指标反映网络流量;最后利用同比和环比相结合的方法对网络流量进行异常判断。实验结果表明,该方法能对网络流量异常有较好的监控,并减小异常检测的误判率。 Anomaly network flow can affect network performance, even causes a serious network interruption. This model is im- proved on the base of anomaly detection model of network traffic based on statistics. First, it preprocesses the sampling data, re- moving bad values, and then statistical methods are used to build and update the steady network flow model. It selects some indi- cators that show the character of flow, and little associate to determine the network flow anomaly. Last, by using the combinative method of year-on-year and chain, it can judge the anomaly network flow more accurately. The experiments show that the method can monitor anomaly network flow well and reduce the rate of false anomaly detection.
作者 崔艳娜
机构地区 华南师范大学计算机学院
出处 《计算机与现代化》 2013年第8期151-153,共3页 Computer and Modernization
基金 广东省科技计划资助项目(2009B090300326)
关键词 流量异常 异常检测 稳态模型 traffic anomaly anomaly detection steady models
分类号 TP393 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献8

二级参考文献33

  • 1王叔子.时间序列分析的工程应用[M].武汉:华中理工大学出版社,1992..
  • 2杨正光 吴岷 张晓莉.模式识别[M].中国科学技术大学出版社,2002..
  • 3Throttan M, Ji C. Adaptive thresholding for proactive network problem detection. In: IEEE International Workshop on Systems Management, Newport, Rhode Island, 1998. 108-116.
  • 4Maxion R A. Anomaly detection for diagnosis. In: Proceedings of the 20th International Symposium Fault-Tolerant Computing(FTCS-20), 1990. 20-27.
  • 5Maxion R A, Feather F E. A case study of Ethernet anomalies in a distributed computing environment. IEEE Transactions on Reliability, 1990, 39(4): 433-443.
  • 6Lawrence Ho L, Cavuto D J, Papavassiliou S, Zawadzki A G.Adaptive and automated detection of service anomalies in trans-action-oriented WAN's: Network analysis, algorithms, implementation, and deployment. IEEE Journal of Selected Areas in Communications, 2000, 18(5): 744-757.
  • 7Hood C S, Ji C. Beyond thresholds: An alternative method for extracting information from network measures. In: Proceedings of IEEE Globecom Conference, Phoenix, Arizona, 1997.487-491.
  • 8Ward A, Glynn P, Kathy Richardson. Internet service performance failure detection. Performance Evaluation, 1998, 26(3) : 38-44.
  • 9Alarcon-Aquio V, Barria J A. Anomaly detection in communication networks using wavelet. IEE Proceeding-Communication, 2001, 148(6): 355-362.
  • 10Huang P, Feldmann A, Willinger W. A non-intrusive, wavelet-based approach to detecting network performance problems.In: Proceedings of ACM SIGCOMM Internet Measurement Workshop, San Francisco Bay Area, 2001.

共引文献199

同被引文献18

引证文献1

二级引证文献1

计算机与现代化
2013年 第8期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部