Detecting and Identifying Network Anomalies by Component Analysis | SpringerLink
Skip to main content
Springer Nature Link
Log in

Detecting and Identifying Network Anomalies by Component Analysis

  • Conference paper
Management of Convergence Networks and Services (APNOMS 2006)

Part of the book series: Lecture Notes in Computer Science ((LNCCN,volume 4238))

Included in the following conference series:

  • 570 Accesses

Abstract

Many research works address detection and identification of network anomalies using traffic analysis. This paper considers large topologies, such as those of an ISP, with traffic analysis performed on multiple links simultan-eously. This is made possible by using a combination of simple online traffic parameters and specific data from headers of selective packets. Even though large networks may have many network links and a lot of traffic, the analysis is simplified with the usage of Principal Component Analysis (PCA) subspace method. The proposed method proves that aggregation of such traffic profiles on large topologies allows identification of a certain set of anomalies with high level of certainty.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Wikipedia webpage, http://en.wikipedia.org/wiki/Main_Page

  2. Wang, W., Battiti, R.: Identifying Intrusions in Computer Networks Based on Principal Component Analysis, Technical Report DIT-05-084, University of Trento (2005)

    Google Scholar 

  3. Lakhina, A., Crovella, M., Diot, C.: Diagnosing Network-Wide Traffic Anomalies. In: Proc. ACM SIGCOMM, Portland, USA, pp. 4–6 (August 2004)

    Google Scholar 

  4. Le, T.Q., Zhanikeev, M., Tanaka, Y.: Component Analysis in Traffic and Detection of Anomalies, IEICE Technical Report on Telecommunication Management, No.TM2005-66, pp. 61-66 (March 2006)

    Google Scholar 

  5. Jackson, J.E., Mudholkar, G.S.: Control Procedures for Residuals Associated with Principal Component Analysis. Technometrics, 341–349 (1979)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Global Information and Telecommunication Institute, Waseda University, 1-3-10 Nishi-Waseda, Shinjuku-ku, Tokyo, 169-0051, Japan

    Le The Quyen, Marat Zhanikeev & Yoshiaki Tanaka

  2. Advanced Research Institute for Science and Engineering, Waseda University, 17 Kikuicho, Shinjuku-ku, Tokyo, 162-0044, Japan

    Yoshiaki Tanaka

Authors
  1. Le The Quyen
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Marat Zhanikeev
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Yoshiaki Tanaka
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Dept. of Information & Communication Engineering, Graduate School, Yeungnam University, 214-1, Dae-Dong, Gyeongsan-Si, 712-749, Gyeongbook, Korea

    Young-Tak Kim

  2. NTT West Corporation, 6-2-82 Shimaya, 554-0024, Konohana-ku Osaka, Japan

    Makoto Takano

Rights and permissions

Reprints and permissions

Copyright information

© 2006 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Quyen, L.T., Zhanikeev, M., Tanaka, Y. (2006). Detecting and Identifying Network Anomalies by Component Analysis. In: Kim, YT., Takano, M. (eds) Management of Convergence Networks and Services. APNOMS 2006. Lecture Notes in Computer Science, vol 4238. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11876601_51

Download citation

  • DOI: https://doi.org/10.1007/11876601_51

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-45776-3

  • Online ISBN: 978-3-540-46233-0

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation