Skip to Main content Skip to Navigation
Conference papers

Netflow-Based Malware Detection and Data Visualisation System

Abstract : This paper presents a system for network traffic visualisation and anomalies detection by means of data mining and machine learning techniques. First, this work describes and analyses existing solutions in the field of network anomalies detection in order to identify adapted techniques in that area. Afterwards, the system architecture and the adapted tools and libraries are presented. Particularly, two different anomalies detection methods are proposed.The key experiments and analysis focus on performance evaluation of the proposed algorithms. In particular, different setups are considered in order to evaluate such aspects as detection effectiveness and computational complexity.The obtained results are promising and show that the proposed system can be considered as a useful tool for the network administrator.
Complete list of metadata

Cited literature [10 references]  Display  Hide  Download

https://hal.inria.fr/hal-01656262
Contributor : Hal Ifip <>
Submitted on : Tuesday, December 5, 2017 - 2:59:44 PM
Last modification on : Wednesday, December 6, 2017 - 1:20:57 AM

File

448933_1_En_56_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Rafał Kozik, Robert Młodzikowski, Michał Choraś. Netflow-Based Malware Detection and Data Visualisation System. 16th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Jun 2017, Bialystok, Poland. pp.652-660, ⟨10.1007/978-3-319-59105-6_56⟩. ⟨hal-01656262⟩

Share

Metrics

Record views

425

Files downloads

199