{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,7]],"date-time":"2024-09-07T00:47:15Z","timestamp":1725670035716},"reference-count":0,"publisher":"Sociedade Brasileira de Computa\u00e7\u00e3o - SBC","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"abstract":"The late detection of security threats causes a significant increase in the risk of irreparable damages, disabling any defense attempt. As a consequence, fast real-time threat detection is mandatory for security guarantees. In addition, Network Function Virtualization (NFV) provides new opportunities for efficient and low-cost security solutions. We propose a fast and efficient threat detection system based on stream processing and machine learning algorithms. The main contributions of this work are i) a novel monitoring threat detection system based on stream processing; ii) two datasets, first a dataset of synthetic security data containing both legitimate and malicious traffic, and the second, a week of real traffic of a telecommunications operator in Rio de Janeiro, Brazil; iii) a data pre-processing algorithm, a normalizing algorithm and an algorithm for fast feature selection based on the correlation between variables; iv) a virtualized network function in an open-source platform for providing a real-time threat detection service; v) near-optimal placement of sensors through a proposed heuristic for strategically positioning sensors in the network infrastructure, with a minimum number of sensors; and, finally, vi) a greedy algorithm that allocates on demand a sequence of virtual network functions.<\/jats:p>","DOI":"10.5753\/sbrc_estendido.2019.7789","type":"proceedings-article","created":{"date-parts":[[2019,10,14]],"date-time":"2019-10-14T16:10:40Z","timestamp":1571069440000},"page":"209-216","source":"Crossref","is-referenced-by-count":1,"title":["A Monitoring and Threat Detection System Using Stream Processing as a Virtual Function for Big Data"],"prefix":"10.5753","author":[{"given":"Martin Andreoni","family":"Lopez","sequence":"first","affiliation":[]},{"given":"Otto Carlos M. B.","family":"Duarte","sequence":"additional","affiliation":[]},{"given":"Guy","family":"Pujolle","sequence":"additional","affiliation":[]}],"member":"3742","published-online":{"date-parts":[[2019,5,6]]},"event":{"name":"Anais Estendidos do Simp\u00f3sio Brasileiro de Redes de Computadores e Sistemas Distribu\u00eddos","number":"37","location":"Brasil","acronym":"SBRC Estendido 2019"},"container-title":["Anais Estendidos do XXXVII Simp\u00f3sio Brasileiro de Redes de Computadores e Sistemas Distribu\u00eddos (SBRC Estendido 2019)"],"original-title":[],"link":[{"URL":"https:\/\/sol.sbc.org.br\/index.php\/sbrc_estendido\/article\/download\/7789\/7663","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/sol.sbc.org.br\/index.php\/sbrc_estendido\/article\/download\/7789\/7663","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,17]],"date-time":"2022-01-17T17:18:59Z","timestamp":1642439939000},"score":1,"resource":{"primary":{"URL":"https:\/\/sol.sbc.org.br\/index.php\/sbrc_estendido\/article\/view\/7789"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,5,6]]},"references-count":0,"URL":"https:\/\/doi.org\/10.5753\/sbrc_estendido.2019.7789","relation":{},"subject":[],"published":{"date-parts":[[2019,5,6]]}}}