Detecting Network Anomalies Using Different Wavelet Basis Functions

May 05-May 08

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CNSR.2008.75

2008 Communication Networks and Servi ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Wei Lu Articles by Mahbod Tavallaee Articles by Ali A. Ghorbani

	ASCII Text	x
	Wei Lu, Mahbod Tavallaee, Ali A. Ghorbani, "Detecting Network Anomalies Using Different Wavelet Basis Functions," Communication Networks and Services Research, Annual Conference on, pp. 149-156, 2008 Communication Networks and Services Research Conference (CNSR 2008), 2008.

	BibTex	x
	@article{ 10.1109/CNSR.2008.75, author = {Wei Lu and Mahbod Tavallaee and Ali A. Ghorbani}, title = {Detecting Network Anomalies Using Different Wavelet Basis Functions}, journal ={Communication Networks and Services Research, Annual Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3135-9}, pages = {149-156}, doi = {http://doi.ieeecomputersociety.org/10.1109/CNSR.2008.75}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Communication Networks and Services Research, Annual Conference on TI - Detecting Network Anomalies Using Different Wavelet Basis Functions SN - 978-0-7695-3135-9 SP149 EP156 A1 - Wei Lu, A1 - Mahbod Tavallaee, A1 - Ali A. Ghorbani, PY - 2008 KW - null VL - 0 JA - Communication Networks and Services Research, Annual Conference on ER -

Wei Lu

Mahbod Tavallaee

Ali A. Ghorbani

Signal processing techniques have been applied recently for analyzing and detecting network anomalies due to their potential to find novel or unknown intrusions. In this paper, we present a novel network anomaly detection approach based on wavelet analysis, approximate autoregressive and outlier detection techniques. In order to characterize network traffic behaviors, we proposed fifteen features and applied them as the input signals in our wavelet-based approach. We then evaluate our approach with the 1999 DARPA intrusion detection dataset and conduct a comprehensive comparison for four different typical wavelet basis functions on detecting network intrusions. Our work aims to unveil a question when applying wavelet techniques for detecting network attacks, that is "do wavelet basis functions have an important impact on the intrusion detection performance?". Moreover, to the best of our knowledge, the work is the first to analyze the 1999 DARPA's network traffic using flow data instead of its original raw packet data.

Citation:

Wei Lu, Mahbod Tavallaee, Ali A. Ghorbani, "Detecting Network Anomalies Using Different Wavelet Basis Functions," cnsr, pp.149-156, 2008 Communication Networks and Services Research Conference (CNSR 2008), 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.