Skip to Main content Skip to Navigation
Conference papers

Feature Extraction and Visual Feature Fusion for the Detection of Concurrent Prefix Hijacks

Abstract : This paper presents a method for visualizing and analyzing Multiple Origin Autonomous System (MOAS) incidents on Border Gateway Protocol (BGP), for the purpose of detecting concurrent prefix hijack. Concurrent prefix hijacks happen when an unauthorized network originates prefixes that belong to multiple other networks. Towards the goal of accurately identifying such events, multiple features are extracted from the BGP records and visualized using parallel coordinates enhanced with visual querying capabilities. The proposed visual queries enable the analyst to select a significant subset of the initial dataset for further analysis, based on the values of multiple features. This procedure allows for the efficient visual fusion of the proposed features and the accurate identification of prefix hijacks. Most of the previous approaches on BGP hijack detection depend on static methods in order to fuse the information from multiple features and identify anomalies. The proposed visual feature fusion, however, allows the human operator to incorporate his expert knowledge into the analysis, so as to dynamically investigate the observed events, and accurately identify anomalies. The efficiency of the proposed approach is demonstrated on state-of-the-art BGP events.
Document type :
Conference papers
Complete list of metadata

Cited literature [13 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Wednesday, November 2, 2016 - 5:19:36 PM
Last modification on : Tuesday, January 18, 2022 - 2:26:05 PM
Long-term archiving on: : Friday, February 3, 2017 - 3:43:51 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Stavros Papadopoulos, Konstantinos Votis, Christos Alexakos, Dimitrios Tzovaras. Feature Extraction and Visual Feature Fusion for the Detection of Concurrent Prefix Hijacks. 10th IFIP International Conference on Artificial Intelligence Applications and Innovations (AIAI), Sep 2014, Rhodes, Greece. pp.310-319, ⟨10.1007/978-3-662-44722-2_33⟩. ⟨hal-01391058⟩



Record views


Files downloads