Antonio Cuadra-Sánchez, J. Aracil, Javier Ramos de Santiago
{"title":"基于信息论的交通异常检测新技术的提出与分析","authors":"Antonio Cuadra-Sánchez, J. Aracil, Javier Ramos de Santiago","doi":"10.1109/SACONET.2014.6867763","DOIUrl":null,"url":null,"abstract":"The change-point detection theory is used to identify abrupt changes in the network traffic. The literature has focused on longitudinal traffic analysis, namely, detecting sudden peak changes, rather than analyzing the traffic pattern on a 24h typical day. As traffic varies throughout the day, it is essential to consider the concrete traffic period in which the anomaly occurs, which is useful for checking interconnection agreements amongst operators, something not possible with traditional sudden peak changes techniques. As we introduce in this paper, no author to date has devised to detect changing points inside a typical day traffic pattern, which constitutes an innovative information-theory based technique. The aim of this paper is to present this new technique and to analyze how the different algorithms behave in detecting changing points inside a typical day profile. We conclude that a combination of the algorithms provides better results than the use of a single one. In low traffic periods the tests of goodness-of-fit best detect changing conditions, while in normal traffic periods (daytime) entropy-based algorithms best detect traffic increases; besides, the Statistical Control Charts complements both of them when detecting very abrupt changes regardless the traffic load.","PeriodicalId":440592,"journal":{"name":"2014 International Conference on Smart Communications in Network Technologies (SaCoNeT)","volume":"71 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-06-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"Proposal of a new information-theory based technique and analysis of traffic anomaly detection\",\"authors\":\"Antonio Cuadra-Sánchez, J. Aracil, Javier Ramos de Santiago\",\"doi\":\"10.1109/SACONET.2014.6867763\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The change-point detection theory is used to identify abrupt changes in the network traffic. The literature has focused on longitudinal traffic analysis, namely, detecting sudden peak changes, rather than analyzing the traffic pattern on a 24h typical day. As traffic varies throughout the day, it is essential to consider the concrete traffic period in which the anomaly occurs, which is useful for checking interconnection agreements amongst operators, something not possible with traditional sudden peak changes techniques. As we introduce in this paper, no author to date has devised to detect changing points inside a typical day traffic pattern, which constitutes an innovative information-theory based technique. The aim of this paper is to present this new technique and to analyze how the different algorithms behave in detecting changing points inside a typical day profile. We conclude that a combination of the algorithms provides better results than the use of a single one. In low traffic periods the tests of goodness-of-fit best detect changing conditions, while in normal traffic periods (daytime) entropy-based algorithms best detect traffic increases; besides, the Statistical Control Charts complements both of them when detecting very abrupt changes regardless the traffic load.\",\"PeriodicalId\":440592,\"journal\":{\"name\":\"2014 International Conference on Smart Communications in Network Technologies (SaCoNeT)\",\"volume\":\"71 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-06-18\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2014 International Conference on Smart Communications in Network Technologies (SaCoNeT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SACONET.2014.6867763\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 International Conference on Smart Communications in Network Technologies (SaCoNeT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SACONET.2014.6867763","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Proposal of a new information-theory based technique and analysis of traffic anomaly detection
The change-point detection theory is used to identify abrupt changes in the network traffic. The literature has focused on longitudinal traffic analysis, namely, detecting sudden peak changes, rather than analyzing the traffic pattern on a 24h typical day. As traffic varies throughout the day, it is essential to consider the concrete traffic period in which the anomaly occurs, which is useful for checking interconnection agreements amongst operators, something not possible with traditional sudden peak changes techniques. As we introduce in this paper, no author to date has devised to detect changing points inside a typical day traffic pattern, which constitutes an innovative information-theory based technique. The aim of this paper is to present this new technique and to analyze how the different algorithms behave in detecting changing points inside a typical day profile. We conclude that a combination of the algorithms provides better results than the use of a single one. In low traffic periods the tests of goodness-of-fit best detect changing conditions, while in normal traffic periods (daytime) entropy-based algorithms best detect traffic increases; besides, the Statistical Control Charts complements both of them when detecting very abrupt changes regardless the traffic load.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
