3D network traffic monitoring based on an automatic attack classifier

Actas de congresos

Fecha

2014-01-01

Registro en:

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), v. 8580 LNCS, n. PART 2, p. 342-351, 2014.

1611-3349

0302-9743

http://hdl.handle.net/11449/171644

10.1007/978-3-319-09129-7_26

2-s2.0-84904861827

Autor

Universidade Federal de São Carlos (UFSCar)

Universidade Estadual Paulista (Unesp)

Corollarium Technologies

Universidade de São Paulo (USP)

Institución

Universidade Estadual Paulista (Brasil)

Resumen

In the last years, the exponential growth of computer networks has created an incredibly increase of network data traffic. The management becomes a challenging task, requesting a continuous monitoring of the network to detect and diagnose problems, and to fix problems and to optimize performance. Tools, such as Tcpdump and Snort are commonly used as network sniffer, logging and analysis applied on a dedicated host or network segment. They capture the traffic and analyze it for suspicious usage patterns, such as those that occur normally with port scans or Denial-of-service attacks. These tools are very important for the network management, but they do not take advantage of human cognitive capacity of the learning and pattern recognition. To overcome this limitation, this paper aims to present a visual interactive and multiprojection 3D tool with automatic data classification for attack detection. © 2014 Springer International Publishing.

Materias

Mostrar el registro completo del ítem