| dc.contributor.author | Paulauskas, Nerijus | |
| dc.contributor.author | Bagdonas, Ąžuolas-Faustas | |
| dc.date.accessioned | 2023-09-18T16:24:57Z | |
| dc.date.available | 2023-09-18T16:24:57Z | |
| dc.date.issued | 2015 | |
| dc.identifier.issn | 1939-0114 | |
| dc.identifier.other | (BIS)VGT02-000030784 | |
| dc.identifier.uri | https://etalpykla.vilniustech.lt/handle/123456789/113552 | |
| dc.description.abstract | Internet users and computer networks constantly suffer from increasing number of cyberattacks. During the process of seeking how to reduce the risk and possible consequences of the attacks, it is very important to identify the attacks at the initial stage of their realization. For this purpose, the anomaly detection systems, a subset of intrusion detection systems, can be applied. The main advantage of anomaly-based systems is the ability to detect unknown attacks. We propose a novel approach to detect the network flow anomalies. The method relies on aggregated network flow metrics and is based on local outlier factor algorithm, which evaluates each event's uniqueness on the basis of distance from the k-nearest neighbours. In our research, 15 different groups of features (a total of 74 features) were suggested to detect anomalous network flows. According to experimental results, the best groups of features were identified with the highest values of precision, recall | eng |
| dc.format | PDF | |
| dc.format.extent | p. 4203-4212 | |
| dc.format.medium | tekstas / txt | |
| dc.language.iso | eng | |
| dc.relation.isreferencedby | Science Citation Index Expanded (Web of Science) | |
| dc.source.uri | http://onlinelibrary.wiley.com/doi/10.1002/sec.1335/abstract | |
| dc.subject | IK02 - Išmaniosios komunikacijų technologijos / Smart communication technologies | |
| dc.title | Local outlier factor use for the network flow anomaly detection | |
| dc.type | Straipsnis Web of Science DB / Article in Web of Science DB | |
| dcterms.references | 10 | |
| dc.type.pubtype | S1 - Straipsnis Web of Science DB / Web of Science DB article | |
| dc.contributor.institution | Vilniaus Gedimino technikos universitetas | |
| dc.contributor.faculty | Elektronikos fakultetas / Faculty of Electronics | |
| dc.subject.researchfield | N 009 - Informatika / Computer science | |
| dc.subject.researchfield | T 001 - Elektros ir elektronikos inžinerija / Electrical and electronic engineering | |
| dc.subject.ltspecializations | L106 - Transportas, logistika ir informacinės ir ryšių technologijos (IRT) / Transport, logistic and information and communication technologies | |
| dc.subject.en | Anomaly detection | |
| dc.subject.en | Network flow | |
| dc.subject.en | Netflow | |
| dc.subject.en | Local outlier factor | |
| dcterms.sourcetitle | Security and communication networks | |
| dc.description.issue | iss. 18 | |
| dc.description.volume | Vol. 8 | |
| dc.publisher.name | John Wiley & Sons | |
| dc.publisher.city | Hoboken, USA | |
| dc.identifier.doi | 10.1002/sec.1335 | |
| dc.identifier.elaba | 13945798 | |
