Filtering Automated Polling Traffic in Computer Network Flow Data

机译：过滤计算机网络流数据中的自动轮询流量

获取原文

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Detecting polling behaviour in a computer network has two important applications. First, the polling can be indicative of malware beaconing, where an undetected software virus sends regular communications to a controller. Second, the cause of the polling may not be malicious, since it may correspond to regular automated update requests permitted by the client, to build models of normal host behaviour for signature-free anomaly detection, this polling behaviour needs to be understood. This article presents a simple Fourier analysis technique for identifying regular polling, and focuses on the second application: modelling the normal behaviour of a host, using real data collected from the computer network of Imperial College London.

机译：检测计算机网络中的轮询行为有两个重要的应用程序。首先，投票可以指示恶意软件信标，其中未检测到的软件病毒将定期通信发送到控制器。其次，轮询的原因可能不会恶意，因为它可以对应于客户端允许的常规自动化更新请求，以构建正常主机行为的模型，以便无签名异常检测，这种轮询行为需要被理解。本文介绍了一个简单的傅立叶分析技术，用于识别正常轮询，并专注于第二个应用程序：使用从伦敦帝国学院计算机网络收集的真实数据来建立主机的正常行为。

著录项

来源
《IEEE Joint Intelligence and Security Informatics Conference》|2014年||共4页
会议地点
作者
Heard N.; Rubin-Delanchy P.; Lawson D.;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类安全保密;
关键词
Fourier analysis; computer network security; system monitoring; Fourier analysis technique; Imperial College London; automated polling traffic filtering; computer network flow data; regular automated update requests; signature-free anomaly detection; Computational modeling; Educational institutions; IP networks; Malware; Monitoring; Servers;

机译：傅里叶分析;计算机网络安全;系统监控;傅立叶分析技术;伦敦帝国学院;自动化轮询流量过滤;计算机网络流数据;常规自动化更新请求;无签名异常检测;计算建模;教育机构;知识产权;IP网络;监控;服务器;

相似文献

外文文献
中文文献
专利

1. A Kalman filtering approach to traffic flow estimation in computer networks [J] . G. Pozzi, S. Formentin, P. Lluka, IFAC PapersOnLine . 2018,第15期

机译：计算机网络流量估计的卡尔曼滤波方法
2. Classification of periodic arrivals in event time data for filtering computer network traffic [J] . Passino Francesco Sanna, Heard Nicholas A. Statistics and computing . 2020,第5期

机译：过滤计算机网络流量的事件时间数据中定期抵达的分类
3. Using traffic filtering rules and OpenFlow devices for transparent flow switching and automatic dynamic-circuit creation in hybrid networks [J] . K.V. Cardoso, S.L. Correa, J.F. de Rezende, The Journal of Systems and Software . 2016,第jula期

机译：使用流量过滤规则和OpenFlow设备进行混合网络中的透明流交换和自动动态电路创建
4. Filtering Automated Polling Traffic in Computer Network Flow Data [C] . Heard N., Rubin-Delanchy P., Lawson D. 2014 IEEE Joint Intelligence and Security Informatics Conference . 2014

机译：在计算机网络流数据中过滤自动轮询流量
5. Traffic surveillance and automated data extraction from aerial video using computer vision, artificial intelligence, and probabilistic approaches. [D] . Zhao, Xi. 2016

机译：使用计算机视觉，人工智能和概率方法从航空视频进行交通监视和自动数据提取。
6. A Mesoscopic Traffic Data Assimilation Framework for Vehicle Density Estimation on Urban Traffic Networks Based on Particle Filters [O] . Song Wang, Xu Xie, Rusheng Ju 2019

机译：基于粒子过滤器的城市交通网络车辆密度估计的介观交通数据同化框架
7. Filtering automated polling traffic in computer network flow data [O] . Heard, Nicholas A, Rubin-Delanchy, Patrick T G, Lawson, Daniel John 2014

机译：筛选计算机网络流数据中的自动轮询流量

Filtering Automated Polling Traffic in Computer Network Flow Data

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅