Abstract : Internet traffic analysis via flow records is an important task for network operators. There is a variety of applications, targeted at identifying, filtering or aggregating flows based on certain criteria. Most of these applications exhibit certain limitations when it comes to the identification of complex network activities. To overcome some of these limitations, a new flow query language has been proposed recently, which allows to express complex time relationships between flows. In this paper, we describe a prototype implementation of this query language and we evaluate its performance.
Burkhard Stiller; Filip Turck. 4th International Conference on Autonomous Infrastructure, Management and Security (AIMS), Jun 2010, Zurich, Switzerland. Springer, Lecture Notes in Computer Science, LNCS-6155, pp.147-158, 2010, Mechanisms for Autonomous Management of Networks and Services. 〈10.1007/978-3-642-13986-4_21〉
https://hal.inria.fr/hal-01056634
Contributeur : Hal Ifip
<>
Soumis le : mercredi 20 août 2014 - 12:21:15
Dernière modification le : vendredi 11 août 2017 - 16:20:16
Document(s) archivé(s) le : jeudi 27 novembre 2014 - 11:37:26
Kaloyan Kanev, Nikolay Melnikov, Jürgen Schönwälder. Implementation of a Stream-Based IP Flow Record Query Language. Burkhard Stiller; Filip Turck. 4th International Conference on Autonomous Infrastructure, Management and Security (AIMS), Jun 2010, Zurich, Switzerland. Springer, Lecture Notes in Computer Science, LNCS-6155, pp.147-158, 2010, Mechanisms for Autonomous Management of Networks and Services. 〈10.1007/978-3-642-13986-4_21〉. 〈hal-01056634〉
