On the Use of TCP Passive Measurements for Anomaly Detection: A Case Study from an Operational 3G Network.
Peter Romirer-MaierhoferAngelo ColucciaTobias WitekPublished in: TMA (2010)
Keyphrases
- anomaly detection
- network traffic
- network anomaly detection
- network intrusion
- intrusion detection
- detect anomalies
- anomalous behavior
- detecting anomalies
- network intrusion detection
- computer security
- intrusion detection system
- computer networks
- normal behavior
- intrusion prevention
- unsupervised anomaly detection
- network security
- negative selection algorithm
- behavior analysis
- data assimilation
- congestion control
- malware detection
- network structure
- detecting anomalous
- one class support vector machines
- pairwise
- neural network
- normal traffic
- semi supervised
- tcp ip
- training data
- feature selection
- knowledge discovery
- machine learning
- traffic patterns
- supervised learning
- cumulative sum
- unsupervised learning
- data sets