Uncovering Relations Between Traffic Classifiers and Anomaly Detectors via Graph Theory

Romain Fontugne 1, 2 Pierre Borgnat 3 Patrice Abry 3 Kensuke Fukuda 2
1 The Graduate University for Advanced Studies
2 NII - National Institute of Informatics
3 Phys-ENS - Laboratoire de Physique de l'ENS Lyon
Abstract : Network trac classification and anomaly detection have received much attention in the last few years. However, due to the the lack of common ground truth, proposed methods are evaluated through di- verse processes that are usually neither comparable nor reproducible. Our final goal is to provide a common dataset with associated ground truth resulting from the cross-validation of various algorithms. This paper deals with one of the substantial issues faced in achieving this ambitious goal: relating outputs from various algorithms. We propose a general methodology based on graph theory that relates outputs from diverse algorithms by taking into account all reported information. We validate our method by comparing results of two anomaly detectors which report traffic at different granularities. The proposed method succesfully identified simi- larities between the outputs of the two anomaly detectors although they report distinct features of the traffic.
Keywords : Internet Traffic Classification Anomaly Detection Benchmarking Graph Community Detection
Type de document :
Communication dans un congrès
COST-TMA (Traffic Measurement & Analysis) Workshop 2010, Apr 2010, Zurich, Switzerland. Springer, pp.101-114, 2010, Lecture Notes in Computer Science (6003)
Liste complète des métadonnées

Littérature citée [20 références]  Voir  Masquer  Télécharger
https://hal-ens-lyon.archives-ouvertes.fr/ensl-00476021
Contributeur : Pierre Borgnat <>
Soumis le : vendredi 23 avril 2010 - 14:40:12
Dernière modification le : jeudi 19 avril 2018 - 14:54:03
Document(s) archivé(s) le : lundi 22 octobre 2012 - 15:22:27

Fichier

fontugne_tma2010.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : ensl-00476021, version 1

Collections

ENS-LYON | UNIV-LYON1

Citation

Romain Fontugne, Pierre Borgnat, Patrice Abry, Kensuke Fukuda. Uncovering Relations Between Traffic Classifiers and Anomaly Detectors via Graph Theory. COST-TMA (Traffic Measurement & Analysis) Workshop 2010, Apr 2010, Zurich, Switzerland. Springer, pp.101-114, 2010, Lecture Notes in Computer Science (6003). 〈ensl-00476021〉

Exporter

BibTeX TEI DC DCterms EndNote

Partager

Métriques

Consultations de la notice

378

Téléchargements de fichiers

428

Contact

support.ccsd.cnrs.fr
hal.support@ccsd.cnrs.fr
Logo CCSD