ePrints.FRI - University of Ljubljana, Faculty of Computer and Information Science

Anomaly detection in computer networks using higher-order dependencies

Tadej Matek (2017) Anomaly detection in computer networks using higher-order dependencies. MSc thesis.

[img]
Preview
PDF
Download (516Kb)

    Abstract

    Nowadays, countless network attacks are known, exploiting the vulnerability of network protocols and Internet topology. In our work, we tackle the problem of anomaly detection in computer communication networks from the standpoint of network analysis. We model the interactions between different network protocols as dynamics in a graph. We demonstrate that the traditional approach to constructing a graph is inadequate and fails to capture correlations in paths of length larger than two. We devise an anomaly detection procedure based on higher-order dependencies and show that it correctly identifies an UDP flood attack. We give insights into how computer communication protocols interact and what are the most common traffic patterns in the Internet.

    Item Type: Thesis (MSc thesis)
    Keywords: network anomalies, network attacks, network science, higher-order dependencies, Internet protocols
    Number of Pages: 55
    Language of Content: English
    Mentor / Comentors:
    Name and SurnameIDFunction
    doc. dr. Lovro ŠubeljMentor
    Link to COBISS: http://www.cobiss.si/scripts/cobiss?command=search&base=51012&select=(ID=1537591747)
    Institution: University of Ljubljana
    Department: Faculty of Computer and Information Science
    Item ID: 3992
    Date Deposited: 03 Oct 2017 12:52
    Last Modified: 13 Oct 2017 10:14
    URI: http://eprints.fri.uni-lj.si/id/eprint/3992

    Actions (login required)

    View Item