• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>International conference on security management;SAM'09 >Abnormal Traffcic Detection using Flow-based Traffic Measuring Scheme
【24h】

Abnormal Traffcic Detection using Flow-based Traffic Measuring Scheme

机译:使用基于流量的流量测量方案进行异常流量检测

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Because Signature-based detection engines only detect known attacks, a signature must be created for every attack, and unknown attacks cannot be detected, for example, zero-day attacks. In this paper, we have introduced the Zero-day Attack Detection System (ZADS) for novel network attack detection. This system provides early detection function and validation of attack at the moment the attacks start to spread on the network. Especially, we classify the suspicious flow from the normal through the flow-based traffic measuring scheme based on hardware-based accelerator. In this paper, after we setup the ZADS to real test-bed, we have analyzed the results of the ZADS about detection of unknown attack.
机译:由于基于签名的检测引擎仅检测已知攻击,因此必须为每种攻击创建签名,并且无法检测到未知攻击,例如零时差攻击。在本文中,我们介绍了用于新型网络攻击检测的零日攻击检测系统(ZADS)。当攻击开始在网络上传播时,此系统提供早期检测功能和攻击验证。尤其是,我们基于基于硬件的加速器,通过基于流量的流量测量方案,将正常流量中的可疑流量分类。在本文中,将ZADS设置为真实测试台后,我们分析了ZADS的未知攻击检测结果。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号