| HAL-Inria | Publications, software ... of Inria's scientists |
Conference papers
Preserving Relations in Parallel Flow Data Processing
Abstract : Network monitoring produces high volume of data that must be analyzed ideally in near real-time to support network security operations. It is possible to process the data using Big Data frameworks, however, such approach requires adaptation or complete redesign of processing tools to get the same results. This paper elaborates on a parallel processing based on splitting a stream of flow records. The goal is to create subsets of traffic that contain enough information for parallel anomaly detection. The paper describes a methodology based on so called witnesses that helps to scale up without any need to modify existing algorithms.
Cited literature [7 references]
https://hal.inria.fr/hal-01806065
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Friday, June 1, 2018 - 4:01:24 PM
Last modification on : Tuesday, January 19, 2021 - 10:16:03 AM
Long-term archiving on: : Sunday, September 2, 2018 - 3:38:32 PM
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Friday, June 1, 2018 - 4:01:24 PM
Last modification on : Tuesday, January 19, 2021 - 10:16:03 AM
Long-term archiving on: : Sunday, September 2, 2018 - 3:38:32 PM
File
452969_1_En_14_Chapter.pdf
Files produced by the author(s)
Licence
Distributed under a Creative Commons Attribution 4.0 International License