Abstract
When diagnosing network problems, it is desirable to have a view of the traffic inside the network. This can be achieved by profiling the traffic. A fully profiled traffic can contain significant information of the network’s current state, and can be further used to detect anomalous traffic and manage the network better. Many has addressed problems of profiling network traffic, but unfortunately there are no specific profiles could lasts forever for one particular network, since network traffic characteristic always changes over and over based on the sum of nodes, software that being used, type of access, etc. This paper introduces an online adaptive system using Evolving Connectionist Systems to profile network traffic in continuous manner while at the same time try to detect anomalous activity inside the network in real-time and adapt with changes if necessary. Different from an offline approach, which usually profile network traffic using previously captured data for a certain period of time, an online and adaptive approach can use a shorter period of data capturing and evolve its profile if the characteristic of the network traffic has changed.
Access provided by Autonomous University of Puebla. Download to read the full chapter text
Chapter PDF
Similar content being viewed by others
References
Pasha, M.F., Budiarto, R.: Developing Online Adaptive Engine for Profiling Network Traffic using Evolving Connectionist Systems. In: NCEI’04, Conference on Neuro-Computing and Evolving Intelligence 2004. Auckland, New Zealand (2004)
Kasabov, N.: Evolving Connectionist System: Methods and Applications in Bioinformatics, Brain Study and Intelligent Machines, 1st edn. Springer-Verlag, London (2003)
Pasha, M.F., Budiarto, R., Sumari, P., Osman, A.: Data Mining and Rule Generation in Network Traffic using Fuzzy Clustering Techniques. In: M2USIC’04, MMU International Symposium on Information and Communications Technologies. Putrajaya, Malaysia (2004)
Lampinen, T., Koivisto, H., Honkanen, T.: Profiling Network Application with Fuzzy C-Means Clustering and Self Organizing Map. In: First International Conference on Fuzzy System and Knowledge Discovery: Computational Intelligence for the E-Age. Singapore (2002)
Song, Q., Kasabov, N.: ECM, A Novel On-line, Evolving Clustering Method and its Applications. In: ANNES’01, Fifth Biannual Conference on Artificial Neural Networks and Expert Systems (2001)
Marchette, D.: A Statistical Method for Profiling Network Traffic. In: Workshop on Intrusion Detection and Network Monitoring. USA (1999)
Paxson, V.: Bro: A System for Detecting Network Intruders in Real-Time. In: 7th USENIX Security Symposium. USA (1998)
Kasabov, N., Song, Q.: DENFIS: Dynamic Evolving Neuro-Fuzzy Inference System and its Application for time-series prediction. IEEE Trans. Fuzzy System 10(2), 144–154 (2002)
Purvis, D., Kasabov, N., Benwell, G., Zhou, Q., Zhang, F.: Neuro-Fuzzy methods for environmental modelling. System Research and Information Systems 8(4), 221–239 (1999)
Barford, P., Plonka, D.: Characteristics of Network Traffic Flow Anomalies. In: ACM Internet measurement Workshop ACM SIGCOMM’01. San Francisco, USA (2001)
Sureswaran, R.: Network Monitor. In: Conference of Asia Pasific Advance Network. Penang, Malaysia (2001)
Degioanni, L., Risso, F., Varenni, G., Viano, P.: WinPcap: The Free Packet Capture Architecture for Windows. (2003) In HYPERLINK http://winpcap.polito.it
Takagi, T., Sugeno, M.: Fuzzy Identification of Systems and its Application to Modeling and Control. IEEE Trans. System, Man. and Cybernetics 15(1), 116–132 (1985)
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2007 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Pasha, M.F., Budiarto, R., Syukur, M., Yamada, M. (2007). Adaptive Real-Time Network Monitoring System: Detecting Anomalous Activity with Evolving Connectionist System. In: Filipe, J., Coelhas, H., Saramago, M. (eds) E-business and Telecommunication Networks. ICETE 2005. Communications in Computer and Information Science, vol 3. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-75993-5_10
Download citation
DOI: https://doi.org/10.1007/978-3-540-75993-5_10
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-75992-8
Online ISBN: 978-3-540-75993-5
eBook Packages: Computer ScienceComputer Science (R0)