Network Traffic Anomaly Detection via Deep Learning
نویسندگان
چکیده
Network intrusion detection is a key pillar towards the sustainability and normal operation of information systems. Complex threat patterns malicious actors are able to cause severe damages cyber-systems. In this work, we propose novel Deep Learning formulations for detecting threats alerts on network logs that were acquired by pfSense, an open-source software acts as firewall FreeBSD operating system. pfSense integrates several powerful security services such firewall, URL filtering, virtual private networking among others. The main goal study analyse local installation software, in order provide efficient solution controls traffic flow based automatically learnt via proposed, challenging DL architectures. For purpose, exploit Convolutional Neural Networks (CNNs), Long Short Term Memory (LSTMs) construct robust multi-class classifiers, assign each new log instance reaches our system into its corresponding category. performance scheme evaluated conducting quantitative experiments, comparing state-of-the-art formulations.
منابع مشابه
Network Traffic Anomaly Detection
This paper presents a tutorial for network anomaly detection, focusing on non-signature-based approaches. Network traffic anomalies are unusual and significant changes in the traffic of a network. Networks play an important role in today’s social and economic infrastructures. The security of the network becomes crucial, and network traffic anomaly detection constitutes an important part of netw...
متن کاملLearning Rules for Anomaly Detection of Hostile Network Traffic
We introduce an algorithm called LERAD that learns rules for finding rare events in nominal time-series data with long range dependencies. We use LERAD to find anomalies in network packets and TCP sessions to detect novel intrusions. We evaluated LERAD on the 1999 DARPA/Lincoln Laboratory intrusion detection evaluation data set and on traffic collected in a university departmental server enviro...
متن کاملNetwork traffic anomaly detection and evaluation
A worldwide Internet usage growth rate of 380% over the period from 2000, the year of the dot-com bubble burst, until present indicates that Internet technology has become a cornerstone of our daily life. In the same period, cyber-crime has seen an incredible professionalization that makes sophisticated protection mechanisms for computers and networks an absolute necessity. Firewalls as the maj...
متن کاملSketch-based Network-wide Traffic Anomaly Detection
Internet has become an essential part of the daily life for billions of users worldwide, who are using a large variety of network services and applications everyday. However, there have been serious security problems and network failures that are hard to resolve, for example, Botnet attacks, polymorphic worm/virus spreading, DDoS, and flash crowds. To address many of these problems, we need to ...
متن کاملIncreasing Reliability in Network Traffic Anomaly Detection
Network traffic anomalies stand for a large fraction of the Internet traffic and compromise the performance of the network resources. Detecting and diagnosing these threats is a laborious and time consuming task that network operators face daily. During the last decade researchers have concentrated their efforts on this problem and proposed several tools to automate this task. Thereby, recent a...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Information
سال: 2021
ISSN: ['2078-2489']
DOI: https://doi.org/10.3390/info12050215