Adaptive real-time network monitoring system: detecting anomalous activity with evolving connectionist system

Muhammad Fermi Pasha, Rahmat Budiarto, Mohammad Syukur, Masashi Yamada

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearchpeer-review

Abstract

When diagnosing network problems, it is desirable to have a view of the traffic inside the network. This can be achieved by profiling the traffic. A fully profiled traffic can contain significant information of the network's current state, and can be further used to detect anomalous traffic and manage the network better. Many has addressed problems of profiling network traffic, but unfortunately there are no specific profiles could lasts forever for one particular network, since network traffic characteristic always changes over and over based on the sum of nodes, software that being used, type of access, etc. This paper introduces an online adaptive system using Evolving Connectionist Systems to profile network traffic in continuous manner while at the same time try to detect anomalous activity inside the network in real-time and adapt with changes if necessary. Different from an offline approach, which usually profile network traffic using previously captured data for a certain period of time, an online and adaptive approach can use a shorter period of data capturing and evolve its profile if the characteristic of the network traffic has changed.

Original languageEnglish
Title of host publicationE-business and Telecommunication Networks - 2nd International Conference, ICETE 2005, Selected Papers
PublisherSpringer
Pages113-125
Number of pages13
ISBN (Print)9783540759928
DOIs
Publication statusPublished - 2007
Externally publishedYes
EventInternational Conference on E-business and Telecommunication Networks 2005 - Reading, United Kingdom
Duration: 3 Oct 20057 Oct 2005
Conference number: 2nd
https://link.springer.com/book/10.1007/978-3-540-75993-5 (Proceedings)

Publication series

NameCommunications in Computer and Information Science
Volume3 CCIS
ISSN (Print)1865-0929

Conference

ConferenceInternational Conference on E-business and Telecommunication Networks 2005
Abbreviated titleICETE 2005
CountryUnited Kingdom
CityReading
Period3/10/057/10/05
Internet address

Keywords

  • Adaptive System
  • Distributed Network Monitoring
  • Evolving Connectionist Systems
  • Network Anomaly

Cite this