Abstract
AbstractVarious studies have been conducted to detect network anomalies. However, because anomaly signals are determined by the pattern characteristics using the dataset, the real-time detection problem continues. Even if there is a signal with an attack sign among the constantly transmitted and received signals, the attack cannot be blocked in advance. Moreover, it appears in many places in a distributed denial-of-service (DDoS) attack, so the real-time defense must be the best option. Therefore, it is necessary first to discover the characteristics and elements regarded as abnormal signals to discover anomalies in real time. Finally, by analyzing the correlation between network data and features, extracting the elements of the anomaly, and analyzing the behavior of the extracted elements in detail, we aim to increase the accuracy of the anomaly. In this study, we used Coburg intrusion detection and KDDCup datasets and analyzed the correlation of elements in the dataset using a graph neural network. The calculated accuracy values of the anomaly detection were 94.5% and 98.85%.
Funder
National Research Foundation of Korea
Publisher
Springer Science and Business Media LLC
Subject
Computer Networks and Communications,Hardware and Architecture,Media Technology,Software
Reference18 articles.
1. Berral JL, Poggi N, Alonso J, Gavalda R, Torres J, Parashar M (2008) “Adaptive distributed mechanism against flooding network attacks based on machine learning,” Proceedings of the 1st ACM workshop on Workshop on AISec, 43–50
2. Cano A (2020) Krawczyk B (2020) “Kappa updated ensemble for drifting data stream mining” Machine Learning 109(1):175–218
3. De Raadt A, Warrens MJ, Bosker RJ, Kiers HA (2019) Kappa coefficients for missing data. Educational and psychological measurement 79(3):558–576
4. Douligeris C, Mitrokotsa A (2003) “DDoS attacks and defense mechanisms: a classification,” In Proceedings of the 3rd IEEE International Symposium on Signal Processing and Information Technology, 190–193, Dec. 2003
5. Garg R, Qin E, Martínez FM, Guirado R, Jain A, Abadal S, Abellán JL, Acacio ME, Alarcón E, Rajamanickam S et al (2020) “A Taxonomy for Classification and Comparison of Dataflows for GNN Accelerators,” Sandia National Lab.(SNL-NM), Albuquerque, NM (United States)
Cited by
2 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献