Distributed detection/localization of change-points in high-dimensional network traffic data

From MaRDI portal
Publication:746229

DOI10.1007/S11222-011-9240-5zbMATH Open1322.62146arXiv0909.5524OpenAlexW3106045166MaRDI QIDQ746229FDOQ746229


Authors: Alexandre Lung-Yut-Fong, Céline Lévy-Leduc, Olivier Cappé Edit this on Wikidata


Publication date: 16 October 2015

Published in: Statistics and Computing (Search for Journal in Brave)

Abstract: We propose a novel approach for distributed statistical detection of change-points in high-volume network traffic. We consider more specifically the task of detecting and identifying the targets of Distributed Denial of Service (DDoS) attacks. The proposed algorithm, called DTopRank, performs distributed network anomaly detection by aggregating the partial information gathered in a set of network monitors. In order to address massive data while limiting the communication overhead within the network, the approach combines record filtering at the monitor level and a nonparametric rank test for doubly censored time series at the central decision site. The performance of the DTopRank algorithm is illustrated both on synthetic data as well as from a traffic trace provided by a major Internet service provider.


Full work available at URL: https://arxiv.org/abs/0909.5524




Recommendations




Cites Work


Cited In (16)





This page was built for publication: Distributed detection/localization of change-points in high-dimensional network traffic data

Report a bug (only for logged in users!)Click here to report a bug for this page (MaRDI item Q746229)