Toward Stream-Based IP Flow Analysis

J 2017

Toward Stream-Based IP Flow Analysis

JIRSÍK, Tomáš, Milan ČERMÁK, Daniel TOVARŇÁK a Pavel ČELEDA

Základní údaje

Originální název

Toward Stream-Based IP Flow Analysis

Autoři

JIRSÍK, Tomáš (203 Česká republika, garant, domácí), Milan ČERMÁK (203 Česká republika, domácí), Daniel TOVARŇÁK (203 Česká republika, domácí) a Pavel ČELEDA (203 Česká republika, domácí)

Vydání

IEEE Communications Magazine, IEEE, 2017, 0163-6804

Další údaje

Jazyk

angličtina

Typ výsledku

Článek v odborném periodiku

Obor

10201 Computer sciences, information science, bioinformatics

Stát vydavatele

Spojené státy

Utajení

není předmětem státního či obchodního tajemství

Odkazy

URL

Impakt faktor

Impact factor: 9.270

Kód RIV

RIV/00216224:14610/17:00094364

Organizační jednotka

Ústav výpočetní techniky

DOI

http://dx.doi.org/10.1109/MCOM.2017.1600972

UT WoS

000405724800011

Klíčová slova anglicky

IP networks; Monitoring; Real-time systems; Data analysis; Computer security; Delays; Telecommunication traffic

Štítky

best, best1, rivok

Příznaky

Mezinárodní význam, Recenzováno

Změněno: 12. 4. 2018 09:10, RNDr. Milan Čermák, Ph.D.

Anotace

V originále

Analyzing IP flows is an essential part of traffic measurement for cyber security. Based on information from IP flows, it is possible to discover the majority of concurrent cyber threats in highspeed, large-scale networks. Some major prevailing challenges for IP flow analysis include, but are not limited to, analysis over a large volume of IP flows, scalability issues, and detecting cyber threats in real time. In this article, we discuss the transformation of present IP flow analysis into a stream-based approach to face current challenges in IP flow analysis. We examine the possible positive and negative impacts of the transformation and present examples of real-world applications, along with our recommendations. Our ongoing results show that stream-based IP flow analysis successfully meets the above-mentioned challenges and is suitable for achieving real-time network security analysis and situational awareness.

Návaznosti

MUNI/A/0992/2016, interní kód MU

Název: Zapojení studentů Fakulty informatiky do mezinárodní vědecké komunity (Akronym: SKOMU)

Investor: Masarykova univerzita, Zapojení studentů Fakulty informatiky do mezinárodní vědecké komunity, DO R. 2020_Kategorie A - Specifický výzkum - Studentské výzkumné projekty

TA04010062, projekt VaV

Název: Technologie pro zpracování a analýzu síťových dat velkého rozsahu

Přiložené soubory

2017-ComMag-stream-based-ip-flow-analysis-preprint.pdf

Vyhledat podobné dokumenty

Citovat

JIRSÍK, Tomáš, Milan ČERMÁK, Daniel TOVARŇÁK a Pavel ČELEDA. Toward Stream-Based IP Flow Analysis. IEEE Communications Magazine. IEEE, 2017, roč. 55, č. 7, s. 70-76. ISSN 0163-6804. Dostupné z: https://dx.doi.org/10.1109/MCOM.2017.1600972.

@article{1385935,
   author = {Jirsík, Tomáš and Čermák, Milan and Tovarňák, Daniel and Čeleda, Pavel},
   article_number = {7},
   doi = {http://dx.doi.org/10.1109/MCOM.2017.1600972},
   keywords = {IP networks; Monitoring; Real-time systems; Data analysis; Computer security; Delays; Telecommunication traffic},
   language = {eng},
   issn = {0163-6804},
   journal = {IEEE Communications Magazine},
   title = {Toward Stream-Based IP Flow Analysis},
   url = {https://ieeexplore.ieee.org/document/7981527/},
   volume = {55},
   year = {2017}
}

TY  - JOUR
ID  - 1385935
AU  - Jirsík, Tomáš - Čermák, Milan - Tovarňák, Daniel - Čeleda, Pavel
PY  - 2017
TI  - Toward Stream-Based IP Flow Analysis
JF  - IEEE Communications Magazine
VL  - 55
IS  - 7
SP  - 70-76
EP  - 70-76
PB  - IEEE
SN  - 01636804
KW  - IP networks
KW  - Monitoring
KW  - Real-time systems
KW  - Data analysis
KW  - Computer security
KW  - Delays
KW  - Telecommunication traffic
UR  - https://ieeexplore.ieee.org/document/7981527/
L2  - https://ieeexplore.ieee.org/document/7981527/
N2  - Analyzing IP flows is an essential part of traffic measurement for cyber security. Based on information from IP flows, it is possible to discover the majority of concurrent cyber threats in highspeed, large-scale networks. Some major prevailing challenges for IP flow analysis include, but are not limited to, analysis over a large volume of IP flows, scalability issues, and detecting cyber threats in real time. In this article, we discuss the transformation of present IP flow analysis into a stream-based approach to face current challenges in IP flow analysis. We examine the possible positive and negative impacts of the transformation and present examples of real-world applications, along with our recommendations. Our ongoing results show that stream-based IP flow analysis successfully meets the above-mentioned challenges and is suitable for achieving real-time network security analysis and situational awareness.
ER  -

JIRSÍK, Tomáš, Milan ČERMÁK, Daniel TOVARŇÁK a Pavel ČELEDA. Toward Stream-Based IP Flow Analysis. \textit{IEEE Communications Magazine}. IEEE, 2017, roč.~55, č.~7, s.~70-76. ISSN~0163-6804. Dostupné z: https://dx.doi.org/10.1109/MCOM.2017.1600972.

Podrobný výpis o publikaci