An overview of flow-based anomaly detection

Rohini Sharma; Ajay Guleria; R.K. Singla

首页> 外文期刊>International journal of communication networks and distributed systems >An overview of flow-based anomaly detection

【24h】

An overview of flow-based anomaly detection

机译：基于流的异常检测概述

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Intrusions in computer networks are handled using misuse or anomaly-based solutions. Deep packet inspection is generally incorporated in solutions for better detection and mitigation but with the growth of networks at exponential speed, it has become an expensive solution and makes real-time detection difficult. In this paper, network flows-based anomaly detection techniques are reviewed. The review starts with motivation behind using network flows and justifies why flow-based anomaly detection is the need of the hour. Flow-based datasets are also investigated and reviewed. The main focus is on techniques and methodologies used by researchers for anomaly detection in computer networks. The techniques reviewed are categorised into five classes: statistical, machine learning, clustering, frequent pattern mining and agent-based. At the end the core research problems and open challenges are discussed.

机译：使用滥用或基于异常的解决方案来处理计算机网络中的入侵。深度数据包检查通常被集成到解决方案中，以实现更好的检测和缓解，但是随着网络以指数速度增长，它已成为一种昂贵的解决方案，并且使实时检测变得困难。本文综述了基于网络流量的异常检测技术。审查从使用网络流量的动机开始，并说明了为什么需要基于流量的异常检测。还对基于流的数据集进行了调查和审查。研究人员主要研究计算机网络中异常检测所使用的技术和方法。所审查的技术分为五类：统计，机器学习，聚类，频繁模式挖掘和基于代理。最后讨论了核心研究问题和开放挑战。

著录项

来源
《International journal of communication networks and distributed systems》 |2018年第2期|220-240|共21页
作者
Rohini Sharma; Ajay Guleria; R.K. Singla;
展开▼
作者单位

Department of Computer Science and Applications, Panjab University, Chandigarh, India;

Computer Centre, Panjab University, Chandigarh, India;

Department of Computer Science and Applications, Panjab University, Chandigarh, India;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
network flows; anomaly detection; security; privacy; flow-based dataset; statistical techniques; machine learning; clustering; frequent pattern mining; software agents;

机译：网络流;异常检测;安全性;保密性;基于流的数据集;统计技术;机器学习;聚类;频繁模式挖掘;软件代理;
入库时间 2022-08-18 01:54:08

相似文献

外文文献
中文文献
专利

1. A Novel Hybrid Intrusion Detection Using Flow-Based Anomaly Detection and Cross-Layer Features in Wireless Sensor Network [J] . Automatic Control and Computer Sciences . 2020,第1期

机译：一种新的混合侵入检测，使用无线传感器网络中的流动异常检测和跨层特征
2. Flow-based anomaly intrusion detection using machine learning model with software defined networking for OpenFlow network [J] . Satheesh N., Rathnamma M. V., Rajeshkumar G., Microprocessors and microsystems . 2020,第Nova期

机译：基于流量的异常入侵检测，使用机器学习模型与软件定义网络进行开放流网络
3. A New Labeled Flow-based DNS Dataset for Anomaly Detection: PUF Dataset [J] . Rohini Sharma, R.K. Singla, Ajay Guleria Procedia Computer Science . 2018,第1期

机译：用于异常检测的新的基于标签流的DNS数据集：PUF数据集
4. Flow-based Anomaly Detection Using Multilayer Perceptron in Software Defined Networks [C] . Yuan-Cheng Lai, Kai-Zhong Zhou, Si-RuLin, International Convention on Information and Communication Technology, Electronics and Microelectronics . 2019

机译：在软件定义网络中使用多层erceptron的流动的异常检测
5. Smartphone-Based Detection of Natural Killer Cells Using Flow-Based Measurement and Machine Learning Classification on Paper Microfluidics [D] . Zenhausern, Ryan. 2021

机译：基于型智能手机的自然杀伤细胞使用基于流量的测量和机器学习分类的自然杀伤细胞的检测
6. Detection of slow port scans in flow-based network traffic [O] . Markus Ring, Dieter Landes, Andreas Hotho 2012

机译：在基于流的网络流量中检测慢速端口扫描
7. Effects of Machine Learning Approach in Flow-Based Anomaly Detection on Software-Defined Networking [O] . Samrat Kumar Dey, Md. Mahbubur Rahman 2019

机译：机器学习方法在软件定义网络的流动异常检测中的影响
8. Multi Agent System for Flow-Based Intrusion Detection. [R] . Ryan, D. A. 2013

机译：基于流的入侵检测的多agent系统。

An overview of flow-based anomaly detection

摘要

著录项

相似文献

相关主题

期刊订阅