NetFlow anomaly detection through parallel cluster density analysis in continuous time-series.
| dc.contributor.author | Flanagan, Kieran | |
| dc.contributor.author | Fallon, Enda | |
| dc.contributor.author | Connolly, Paul | |
| dc.contributor.author | Awad, Abir | |
| dc.date.accessioned | 2020-05-08T10:44:58Z | |
| dc.date.available | 2020-05-08T10:44:58Z | |
| dc.date.copyright | 2017 | |
| dc.date.issued | 2017-06 | |
| dc.identifier.citation | Flanagan K., Fallon E., Connolly P., Awad A. (2017) NetFlow anomaly detection through parallel cluster density analysis in continuous time-series.s. In: Koucheryavy Y., Mamatas L., Matta I., Ometov A., Papadimitriou P. (eds) Wired/Wireless Internet Communications. WWIC 2017. Lecture Notes in Computer Science, vol 10372. Springer, Cham. doi.org/10.1007/978-3-319-61382-6_18 | en_US |
| dc.identifier.isbn | 978-3-319-61382-6 | |
| dc.identifier.uri | http://research.thea.ie/handle/20.500.12065/3175 | |
| dc.description.abstract | The increase in malicious network based attacks has resulted in a growing interest in network anomaly detection. The ability to detect unauthorized or malicious activity on a network is of importance to any organization. With the increase in novel attacks, anomaly detection techniques can be more successful in detecting unknown malicious activity in comparison to traditional signature based methods. However, in a real-world environment, there are many variables that cannot be simulated. This paper proposes an architecture where parallel clustering algorithms work concurrently in order to detect abnormalities that may be lost while traversing over time-series windows. The presented results describe the NetFlow activity of the NPD Group, Inc. over a 24-hour period. The presented results contain real-world anomalies that were detected. | en_US |
| dc.format | en_US | |
| dc.language.iso | en | en_US |
| dc.publisher | Springer | en_US |
| dc.relation.ispartof | Wired/Wireless Internet Communications. WWIC 20 | en_US |
| dc.rights | Attribution-NonCommercial-NoDerivs 3.0 Ireland | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/3.0/ie/ | * |
| dc.subject | Anomaly detection | en_US |
| dc.subject | NetFlow | en_US |
| dc.subject | Clustering | en_US |
| dc.subject | Density analysis | en_US |
| dc.title | NetFlow anomaly detection through parallel cluster density analysis in continuous time-series. | en_US |
| dc.type | Book chapter | en_US |
| dc.identifier.doi | doi.org/10.1007/978-3-319-61382-6_18 | |
| dc.identifier.orcid | https://orcid.org/0000-0002-8300-5813 | |
| dc.rights.access | Open Access | en_US |
| dc.subject.department | Software Research Institute AIT | en_US |
Files in this item
This item appears in the following Collection(s)
Except where otherwise noted, this item's license is described as Attribution-NonCommercial-NoDerivs 3.0 Ireland