Toward Stream-Based IP Flow Analysis

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14610%2F17%3A00094364" target="_blank" >RIV/00216224:14610/17:00094364 - isvavai.cz</a>

Výsledek na webu

<a href="https://ieeexplore.ieee.org/document/7981527/" target="_blank" >https://ieeexplore.ieee.org/document/7981527/</a>

DOI - Digital Object Identifier

<a href="http://dx.doi.org/10.1109/MCOM.2017.1600972" target="_blank" >10.1109/MCOM.2017.1600972</a>

Jazyk výsledku

angličtina

Název v původním jazyce

Toward Stream-Based IP Flow Analysis

Popis výsledku v původním jazyce

Analyzing IP flows is an essential part of traffic measurement for cyber security. Based on information from IP flows, it is possible to discover the majority of concurrent cyber threats in highspeed, large-scale networks. Some major prevailing challenges for IP flow analysis include, but are not limited to, analysis over a large volume of IP flows, scalability issues, and detecting cyber threats in real time. In this article, we discuss the transformation of present IP flow analysis into a stream-based approach to face current challenges in IP flow analysis. We examine the possible positive and negative impacts of the transformation and present examples of real-world applications, along with our recommendations. Our ongoing results show that stream-based IP flow analysis successfully meets the above-mentioned challenges and is suitable for achieving real-time network security analysis and situational awareness.

Název v anglickém jazyce

Toward Stream-Based IP Flow Analysis

Popis výsledku anglicky

Analyzing IP flows is an essential part of traffic measurement for cyber security. Based on information from IP flows, it is possible to discover the majority of concurrent cyber threats in highspeed, large-scale networks. Some major prevailing challenges for IP flow analysis include, but are not limited to, analysis over a large volume of IP flows, scalability issues, and detecting cyber threats in real time. In this article, we discuss the transformation of present IP flow analysis into a stream-based approach to face current challenges in IP flow analysis. We examine the possible positive and negative impacts of the transformation and present examples of real-world applications, along with our recommendations. Our ongoing results show that stream-based IP flow analysis successfully meets the above-mentioned challenges and is suitable for achieving real-time network security analysis and situational awareness.

Druh

J_imp - Článek v periodiku v databázi Web of Science

CEP obor

—

OECD FORD obor

10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)

Projekt

<a href="/cs/project/TA04010062" target="_blank" >TA04010062: Technologie pro zpracování a analýzu síťových dat velkého rozsahu</a><br>

Návaznosti

P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Rok uplatnění

2017

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název periodika

IEEE Communications Magazine

ISSN

0163-6804

e-ISSN

—

Svazek periodika

55

Číslo periodika v rámci svazku

7

Stát vydavatele periodika

US - Spojené státy americké

Počet stran výsledku

7

Strana od-do

70-76

Kód UT WoS článku

000405724800011

EID výsledku v databázi Scopus

2-s2.0-85028385478