ARIMA Based Network Anomaly Detection

Citation

Yaacob, Asrul Hadi and Tan, Ian Kim Teck and Chien, Su Fong and Tan, Hon Khi (2010) ARIMA Based Network Anomaly Detection. In: 2010. ICCSN '10. Second International Conference on Communication Software and Networks. IEEE, Singapore, pp. 205-209. ISBN E-ISBN: 978-1-4244-5727-4, Print ISBN: 978-1-4244-5726-7

[img] Text
05437603.pdf - Published Version
Restricted to Repository staff only

Download (307kB)

Abstract

An early warning system on potential attacks from networks will enable network administrators or even automated network management software to take preventive measures. This is needed as we move towards maximizing the utilization of the network with new paradigms such as Web Services and Software As A Service. This paper introduces a novel approach through using Auto-Regressive Integrated Moving Average (ARIMA) technique to detect potential attacks that may occur in the network. The solution is able to provide feedback through its predictive capabilities and hence provide an early warning system. With the affirmative results, this technique can serve beyond the detection of Denial of Service (DoS) and with sufficient development; an automated defensive solution can be achieved.

Item Type: Book Section
Subjects: Q Science > QA Mathematics > QA71-90 Instruments and machines > QA75.5-76.95 Electronic computers. Computer science
Divisions: Faculty of Information Science and Technology (FIST)
Depositing User: Ms Suzilawati Abu Samah
Date Deposited: 06 Nov 2013 00:27
Last Modified: 21 Dec 2022 09:16
URII: http://shdl.mmu.edu.my/id/eprint/4361

Downloads

Downloads per month over past year

View ItemEdit (login required)