北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2005, Vol. 28 ›› Issue (6): 1-4.doi: 10.13190/jbupt.200506.1.lüshw

• 论文 •    下一篇

TCP/IP骨干通信网流量规律性及异常检测方法

吕述望1,刘恒1,沈昌祥2   

  1. 1中国科学院研究生院 信息安全国家重点实验室, 北京 100049; 2海军计算技术研究所, 北京 100841
  • 出版日期:2005-12-28 发布日期:2005-12-28

Traffic Periodic Analysis and Anomaly Detection on TCP/IP Backbone Network

LV Shuwang1,LIU Heng1,SHEN Chang xiang   

  1. 1State Key Laboratory of Information Security, Graduate School, China Academy of Science, Beijing 100049, China; 2Institute of Computing Technology of Navy, Beijing 100841, China
  • Online:2005-12-28 Published:2005-12-28

摘要:

针对TCP/IP骨干网,提出一种新的基于业务流量周期规律特性的建模与异常检测方法. 该方法通过挖掘骨干网主要业务流量的规律性,结合时间序列分析方法,有效地预测流量的变化趋势,避免了对复杂的流量非线性趋势进行建模分析.

关键词: TCP/IP骨干网, 流量周期规律特性, 异常检测

Abstract:

A new approach to model service traffic and performe anomaly detection on TCP/IP backbone in the perspective of periodic traffic feature was proposed. This method avoids the difficulty to model the uncertainty and nonlinear facts in traffic data and provides more accurate information than the thresholds based detection method.

Key words: TCP/IP backbone, traffic periodic analysis, anomaly dEtection

中图分类号: