Detection of Network Traffic Anomaly Based on Instantaneous Parameters Analysis

Identifying network traffic anomalies accurately and rapidly is critical to the efficient operation of any network. In this paper, a new algorithm is proposed based on instantaneous parameters (instantaneous frequency and Instantaneous amplitude) analysis. The characteristic of traffic anomaly would be revealed more evidently through analyzing the instantaneous parameters of the original network flow data. The simulation shows that the proposed algorithm can identify network traffic anomaly effectively.

[1]  H. T. Kung,et al.  Use of spectral analysis in defense against DoS attacks , 2002, Global Telecommunications Conference, 2002. GLOBECOM '02. IEEE.

[2]  Matthew V. Mahoney,et al.  Network traffic anomaly detection based on packet bytes , 2003, SAC '03.

[3]  Yi Luo,et al.  Generalized Hilbert transform and its applications in geophysics , 2003 .

[4]  Marina Thottan,et al.  Anomaly detection in IP networks , 2003, IEEE Trans. Signal Process..

[5]  Dennis Gabor,et al.  Theory of communication , 1946 .

[6]  Marina Thottan,et al.  Properties of network faults , 2000, NOMS 2000. 2000 IEEE/IFIP Network Operations and Management Symposium 'The Networked Planet: Management Beyond 2000' (Cat. No.00CB37074).

[7]  Boualem Boashash,et al.  Estimating and interpreting the instantaneous frequency of a signal. II. A/lgorithms and applications , 1992, Proc. IEEE.