基于多尺度分解和多通道检测器的交通异常检测方法

2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS) Pub Date : 2019-09-01 DOI:10.1109/ANCS.2019.8901897

Yu Xiang, Jinye Ran, Lisheng Huang, Chaolin Yang, Wenyong Wang

{"title":"基于多尺度分解和多通道检测器的交通异常检测方法","authors":"Yu Xiang, Jinye Ran, Lisheng Huang, Chaolin Yang, Wenyong Wang","doi":"10.1109/ANCS.2019.8901897","DOIUrl":null,"url":null,"abstract":"This paper proposes a new multi-channel network traffic anomaly detection method combined with the idea of multi-scale decomposition and multi-channel detection theory. It can be learned that anomalies could change the characteristics of traffic data at different scales. Traditional anomaly detection methods usually work on each scale independently thus mainly focused on temporally correlated traffic. With the fully exploration on internal frequency-time correlations within multiple scales, this method first obtained the multi-scale decomposition of original traffic data using Ensemble Empirical Mode Decomposition (EEMD), then it is combined with a multi-channel Generalized Likelihood Ratio Test (GLRT) detector, for anomaly detection and decision-making. It can be verified with experiments that this method performs better than other traditional methods, thus gives a new sight on the anomaly detection with different types of traffic data.","PeriodicalId":405320,"journal":{"name":"2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS)","volume":"18 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"A Traffic Anomaly Detection Method based on Multi-scale Decomposition and Multi-Channel Detector\",\"authors\":\"Yu Xiang, Jinye Ran, Lisheng Huang, Chaolin Yang, Wenyong Wang\",\"doi\":\"10.1109/ANCS.2019.8901897\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper proposes a new multi-channel network traffic anomaly detection method combined with the idea of multi-scale decomposition and multi-channel detection theory. It can be learned that anomalies could change the characteristics of traffic data at different scales. Traditional anomaly detection methods usually work on each scale independently thus mainly focused on temporally correlated traffic. With the fully exploration on internal frequency-time correlations within multiple scales, this method first obtained the multi-scale decomposition of original traffic data using Ensemble Empirical Mode Decomposition (EEMD), then it is combined with a multi-channel Generalized Likelihood Ratio Test (GLRT) detector, for anomaly detection and decision-making. It can be verified with experiments that this method performs better than other traditional methods, thus gives a new sight on the anomaly detection with different types of traffic data.\",\"PeriodicalId\":405320,\"journal\":{\"name\":\"2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS)\",\"volume\":\"18 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ANCS.2019.8901897\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ANCS.2019.8901897","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

结合多尺度分解思想和多通道检测理论，提出了一种新的多通道网络流量异常检测方法。由此可知，在不同尺度下，异常可以改变交通数据的特征。传统的异常检测方法通常在各个尺度上独立工作，主要集中在时间相关流量上。该方法充分挖掘了多尺度内的内部频率-时间相关性，首先利用集成经验模态分解(EEMD)对原始交通数据进行多尺度分解，然后结合多通道广义似然比检验(GLRT)检测器进行异常检测和决策。实验结果表明，该方法优于传统方法，为不同类型交通数据的异常检测提供了新的思路。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Traffic Anomaly Detection Method based on Multi-scale Decomposition and Multi-Channel Detector

This paper proposes a new multi-channel network traffic anomaly detection method combined with the idea of multi-scale decomposition and multi-channel detection theory. It can be learned that anomalies could change the characteristics of traffic data at different scales. Traditional anomaly detection methods usually work on each scale independently thus mainly focused on temporally correlated traffic. With the fully exploration on internal frequency-time correlations within multiple scales, this method first obtained the multi-scale decomposition of original traffic data using Ensemble Empirical Mode Decomposition (EEMD), then it is combined with a multi-channel Generalized Likelihood Ratio Test (GLRT) detector, for anomaly detection and decision-making. It can be verified with experiments that this method performs better than other traditional methods, thus gives a new sight on the anomaly detection with different types of traffic data.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS)

自引率

0.00%

发文量