 |
 |
 |
 |
Conference papers
Uncovering Relations Between Traffic Classifiers and Anomaly Detectors via Graph Theory
Abstract : Network trac classification and anomaly detection have received much attention in the last few years. However, due to the the lack of common ground truth, proposed methods are evaluated through di- verse processes that are usually neither comparable nor reproducible. Our final goal is to provide a common dataset with associated ground truth resulting from the cross-validation of various algorithms. This paper deals with one of the substantial issues faced in achieving this ambitious goal: relating outputs from various algorithms. We propose a general methodology based on graph theory that relates outputs from diverse algorithms by taking into account all reported information. We validate our method by comparing results of two anomaly detectors which report traffic at different granularities. The proposed method succesfully identified simi- larities between the outputs of the two anomaly detectors although they report distinct features of the traffic.
Cited literature [20 references]
https://hal-ens-lyon.archives-ouvertes.fr/ensl-00476021
Contributor : Pierre Borgnat Connect in order to contact the contributor
Submitted on : Friday, April 23, 2010 - 2:40:12 PM
Last modification on : Friday, April 8, 2022 - 4:06:02 PM
Long-term archiving on: : Monday, October 22, 2012 - 3:22:27 PM
Contributor : Pierre Borgnat Connect in order to contact the contributor
Submitted on : Friday, April 23, 2010 - 2:40:12 PM
Last modification on : Friday, April 8, 2022 - 4:06:02 PM
Long-term archiving on: : Monday, October 22, 2012 - 3:22:27 PM
File
fontugne_tma2010.pdf
Files produced by the author(s)