All

What are you looking for?

All
Projects
Results
Organizations

Quick search

  • Projects supported by TA ČR
  • Excellent projects
  • Projects with the highest public support
  • Current projects

Smart search

  • That is how I find a specific +word
  • That is how I leave the -word out of the results
  • “That is how I can find the whole phrase”
EN
ČeštinaEnglish

Detection of DNS Traffic Anomalies in Large Networks

The result's identifiers

  • Result code in IS VaVaI

    <a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14610%2F14%3A00073236" target="_blank" >RIV/00216224:14610/14:00073236 - isvavai.cz</a>

  • Result on the web

    <a href="http://dx.doi.org/10.1007/978-3-319-13488-8_20" target="_blank" >http://dx.doi.org/10.1007/978-3-319-13488-8_20</a>

  • DOI - Digital Object Identifier

    <a href="http://dx.doi.org/10.1007/978-3-319-13488-8_20" target="_blank" >10.1007/978-3-319-13488-8_20</a>

Alternative languages

  • Result language

    angličtina

  • Original language name

    Detection of DNS Traffic Anomalies in Large Networks

  • Original language description

    Almost every Internet communication is preceded by a translation of a DNS name to an IP address. Therefore monitoring of DNS traffic can effectively extend capabilities of current methods for network traffic anomaly detection. In order to effectively monitor this traffic, we propose a new flow metering algorithm that saves resources of a flow exporter. Next, to show benefits of the DNS traffic monitoring for anomaly detection, we introduce novel detection methods using DNS extended flows. The evaluationof these methods shows that our approach not only reveals DNS anomalies but also scales well in a campus network.

  • Czech name

  • Czech description

Classification

  • Type

    D - Article in proceedings

  • CEP classification

    IN - Informatics

  • OECD FORD branch

Result continuities

  • Project

    <a href="/en/project/VG20132015103" target="_blank" >VG20132015103: Cybernetic Proving Ground</a><br>

  • Continuities

    P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Others

  • Publication year

    2014

  • Confidentiality

    S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Data specific for result type

  • Article name in the collection

    Advances in Communication Networking, Lecture Notes in Computer Science, Vol. 8846

  • ISBN

    9783319134871

  • ISSN

    0302-9743

  • e-ISSN

  • Number of pages

    12

  • Pages from-to

    215-226

  • Publisher name

    Springer International Publishing

  • Place of publication

    Heidelberg

  • Event location

    Rennes, France

  • Event date

    Sep 1, 2014

  • Type of event by nationality

    EUR - Evropská akce

  • UT code for WoS article

Similar results(10)

CAMNEP: An intrusion detection system for high speed networksOptimizing Flow Sampling for Network Anomaly DetectionStream-wise Detection of Surreptitious Traffic over DNS