Netflow-Based Malware Detection and Data Visualisation System

Abstract : This paper presents a system for network traffic visualisation and anomalies detection by means of data mining and machine learning techniques. First, this work describes and analyses existing solutions in the field of network anomalies detection in order to identify adapted techniques in that area. Afterwards, the system architecture and the adapted tools and libraries are presented. Particularly, two different anomalies detection methods are proposed.The key experiments and analysis focus on performance evaluation of the proposed algorithms. In particular, different setups are considered in order to evaluate such aspects as detection effectiveness and computational complexity.The obtained results are promising and show that the proposed system can be considered as a useful tool for the network administrator.
Type de document :
Communication dans un congrès
Khalid Saeed; Władysław Homenda; Rituparna Chaki. 16th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Jun 2017, Bialystok, Poland. Springer International Publishing, Lecture Notes in Computer Science, LNCS-10244, pp.652-660, 2017, Computer Information Systems and Industrial Management. 〈10.1007/978-3-319-59105-6_56〉
Liste complète des métadonnées

Littérature citée [10 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01656262
Contributeur : Hal Ifip <>
Soumis le : mardi 5 décembre 2017 - 14:59:44
Dernière modification le : mercredi 6 décembre 2017 - 01:20:57

Fichier

 Accès restreint
Fichier visible le : 2020-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Rafał Kozik, Robert Młodzikowski, Michał Choraś. Netflow-Based Malware Detection and Data Visualisation System. Khalid Saeed; Władysław Homenda; Rituparna Chaki. 16th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Jun 2017, Bialystok, Poland. Springer International Publishing, Lecture Notes in Computer Science, LNCS-10244, pp.652-660, 2017, Computer Information Systems and Industrial Management. 〈10.1007/978-3-319-59105-6_56〉. 〈hal-01656262〉

Partager

Métriques

Consultations de la notice

331