FlowHacker: Detecting Unknown Network Attacks in Big Traffic Data Using Network Flows

机译：FlowHacker：使用网络流检测大流量数据中的未知网络攻击

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Traditional Network Intrusion Detection Systems (NIDSs) inspect the payload of the packets looking for known intrusion signatures or deviations from normal behavior, but inspecting traffic at the current speed of Internet Service Provider (ISP) networks is difficult or even unfeasible. This paper presents an approach to detect malicious traffic and identify malicious hosts by inspecting flows, leveraging a combination of unsupervised machine learning and threat intelligence, without requiring either previous knowledge about attacks or traffic without attacks. The approach was implemented in the FlowHacker NIDS and evaluated with two kinds of traffic flows: synthetic traffic flows and real ISP traffic flows.

机译：传统的网络入侵检测系统（NIDS）检查数据包的有效载荷以查找已知的入侵签名或与正常行为的偏离，但是以Internet服务提供商（ISP）网络的当前速度检查流量非常困难，甚至不可行。本文提出了一种方法，该方法可以通过检查流，利用无监督机器学习和威胁情报的组合来检测流量，从而识别恶意主机，而无需事先了解攻击或无需攻击即可获得流量。该方法在FlowHacker NIDS中实现，并通过两种流量进行评估：合成流量和实际ISP流量。

著录项

来源
《2018 17th IEEE International Conference on Trust, Security and Privacy In Computing and Communications, 12th IEEE International Conference on Big Data Science and Engineering》|2018年|567-572|共6页
会议地点 New York(US)
作者
Luis Sacramento; Ibéria Medeiros; João Bota; Miguel Correia;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Machine learning; Feature extraction; Payloads; Machine learning algorithms; Security; Inspection; IP networks;

机译：机器学习;特征提取;有效载荷;机器学习算法;安全性;检查; IP网络;;

相似文献

外文文献
中文文献
专利

1. Hybrid Recurrent Traffic Flow Model with Artificial Neural Networks For Approximation of Unknown Urban Road Subnetworks [J] . Elena Sofronova, Askhat Diveev Procedia Computer Science . 2021,第a期

机译：具有人工神经网络的杂交经常性交通流模型，用于近似城市道路子网的近似
2. An Innovative and Efficient Approach for Detecting Unknown Attacks Using Feature Extraction Scheme and Fuzzy-Neural Networks [J] . Vikas Belwal, Sandip Mandal International Journal of Computer Trends and Technology . 2015,第2期

机译：利用特征提取方案和模糊神经网络的创新高效检测未知攻击的方法
3. Detecting Unknown Attacks in Wireless Sensor Networks That Contain Mobile Nodes [J] . David Fraga, Jos#x000E9, M. Moya, Sensors . 2012,第8期

机译：在包含移动节点的无线传感器网络中检测未知攻击
4. FlowHacker: Detecting Unknown Network Attacks in Big Traffic Data Using Network Flows [C] . Luis Sacramento, Ibéria Medeiros, Jo?o Bota, IEEE International Conference on Big Data Science and Engineering . 2018

机译：FlowHacker：使用网络流检测大量数据中的未知网络攻击
5. On-line adaptive IDS scheme for detecting unknown network attacks using HMM models. [D] . Bojanic, Irena. 2005

机译：在线自适应IDS方案，用于使用HMM模型检测未知网络攻击。
6. Detecting Unknown Attacks in Wireless Sensor Networks That Contain Mobile Nodes [O] . Zorana Banković, David Fraga, José M. Moya, 2012

机译：在包含移动节点的无线传感器网络中检测未知攻击
7. On the Effectiveness of Laser Speckle Contrast Imaging and Deep Neural Networks for Detecting Known and Unknown Fingerprint Presentation Attacks [O] . Hengameh Mirzaalian, Mohamed Hussein, Wael Abd-Almageed 2019

机译：关于激光散斑对比度成像和深神经网络检测已知和未知指纹呈现攻击的有效性
8. On-line Adaptive IDS Scheme for Detecting Unknown Network Attacks Using HMM Models [R] . Bojanic, I. 2005

机译：基于Hmm模型检测未知网络攻击的在线自适应IDs方案

FlowHacker: Detecting Unknown Network Attacks in Big Traffic Data Using Network Flows

摘要

著录项

相似文献

相关主题

期刊订阅