SAFEM: Scalable analysis of flows with entropic measures and SVMReport as inadecuate




SAFEM: Scalable analysis of flows with entropic measures and SVM - Download this document for free, or read online. Document in PDF available to download.

1 SnT - Interdisciplinary Centre for Security Relaibility and Trust 2 Uni.lu - Université du Luxembourg

Abstract : This paper describes a new approach for the detection of large-scale anomalies or malicious events in Netflow records. This approach allows Internet operators, to whom botnets and spam are major threats, to detect large-scale distributed attacks. The prototype SAFEM Scalable Analysis of Flows with Entropic Measures uses spatial-temporal Netflow record aggregation and applies entropic measures to traffic. The aggregation scheme highly reduces data storage leading to the viability of using such an approach in an Internet Service Provider network.

Keywords : Flows Support Vector Machines Anomaly





Author: Jérôme François - Cynthia Wagner - Radu State - Thomas Engel -

Source: https://hal.archives-ouvertes.fr/



DOWNLOAD PDF




Related documents