學術產出-Periodical Articles

Article View/Open

Publication Export

Google ScholarTM

政大圖書館

Citation Infomation

題名 Slow-Paced Persistent Network Attacks Analysis and Detection Using Spectrum Analysis
作者 陳力銘;蕭舜文;陳孟彰;廖婉君
貢獻者 資管系
日期 2016-12
上傳時間 23-Jun-2017 17:28:35 (UTC+8)
摘要 A slow-paced persistent attack, such as slow worm or bot, can bewilder the detection system by slowing down their attack. Detecting such attacks based on traditional anomaly detection techniques may yield high false alarm rates. In this paper, we frame our problem as detecting slow-paced persistent attacks from a time series obtained from network trace. We focus on time series spectrum analysis to identify peculiar spectral patterns that may represent the occurrence of a persistent activity in the time domain. We propose a method to adaptively detect slow-paced persistent attacks in a time series and evaluate the proposed method by conducting experiments using both synthesized traffic and real-world traffic. The results show that the proposed method is capable of detecting slow-paced persistent attacks even in a noisy environment mixed with legitimate traffic.
關聯 IEEE Systems Journal, Vol.10, No.4, pp.1326-1337
資料類型 article
DOI http://dx.doi.org/10.1109/JSYST.2014.2348567
dc.contributor 資管系-
dc.creator (作者) 陳力銘;蕭舜文;陳孟彰;廖婉君-
dc.date (日期) 2016-12-
dc.date.accessioned 23-Jun-2017 17:28:35 (UTC+8)-
dc.date.available 23-Jun-2017 17:28:35 (UTC+8)-
dc.date.issued (上傳時間) 23-Jun-2017 17:28:35 (UTC+8)-
dc.identifier.uri (URI) http://nccur.lib.nccu.edu.tw/handle/140.119/110477-
dc.description.abstract (摘要) A slow-paced persistent attack, such as slow worm or bot, can bewilder the detection system by slowing down their attack. Detecting such attacks based on traditional anomaly detection techniques may yield high false alarm rates. In this paper, we frame our problem as detecting slow-paced persistent attacks from a time series obtained from network trace. We focus on time series spectrum analysis to identify peculiar spectral patterns that may represent the occurrence of a persistent activity in the time domain. We propose a method to adaptively detect slow-paced persistent attacks in a time series and evaluate the proposed method by conducting experiments using both synthesized traffic and real-world traffic. The results show that the proposed method is capable of detecting slow-paced persistent attacks even in a noisy environment mixed with legitimate traffic.-
dc.format.extent 108 bytes-
dc.format.mimetype text/html-
dc.relation (關聯) IEEE Systems Journal, Vol.10, No.4, pp.1326-1337-
dc.title (題名) Slow-Paced Persistent Network Attacks Analysis and Detection Using Spectrum Analysis-
dc.type (資料類型) article-
dc.identifier.doi (DOI) 10.1109/JSYST.2014.2348567-
dc.doi.uri (DOI) http://dx.doi.org/10.1109/JSYST.2014.2348567-