A Distributed Approach of Intelligent Network Traffic Monitoring and Anomaly Detection Application

Abstract

Monitoring a large corporate network connecting thousands of computers which generate billions of packets everyday is a challenge and difficult task! This paper proposes a distributed approach of intelligent network traffic monitoring and anomaly detection system. By utilizing a distributed client-server scheme, our proposed system can monitor multiple network segments and distribute the workload among the intelligent clients to monitor and detect anomaly. In this way, the complexity of having analyzing enormous traffic at once can be reduced. The server's primary task is only to manage all different profiles from different network segment used by the intelligent clients in their respective segments