Name
Title | ||
|---|---|---|
Bitwise sketch for lightweight reverse IP reconstruction in network anomaly detection |
Abstract | ||
|---|---|---|
Sketch is commonly used in network anomaly detection. However, its irreversibility seriously obstacle for identification of origin of traffic anomaly, such as attack flows. In this paper, we design a novel sketch structure, called Bitwise Sketch, with the ability of fast and lightweight reverse deduction. Bitwisebased hash function, which distributes keys (IPs) is Sketch, is adopted in bitwise sketch, instead of traditional universal hash function. We propose an IP reconstruction algorithm that can reversely infer anomalous keys (IP) from a set of anomalous buckets, with very low overhead. Simulation result shows the effectiveness of the algorithm¿s results in filtering attack traffic. Through theoretical analysis, we compare our approach with three resultant approaches, and our approach outperforms both in memory requirement and computational cost. |
Year | DOI | Venue |
|---|---|---|
2012 | 10.1109/MASS.2012.6708530 | MASS Workshops |
Keywords | Field | DocType |
bitwise hash function,ip networks,filtering attack traffic,computational cost,traffic anomaly,bitwise sketch,computer network security,memory requirement,anomaly detection,telecommunication traffic,reverse ip reconstruction,distributes keys,network anomaly detection,lightweight reverse ip reconstruction | Anomaly detection,Bitwise operation,Computer science,Universal hashing,Network security,Computer network,Filter (signal processing),Theoretical computer science,Memory management,Hash function,Sketch | Conference |
Volume | ISSN | ISBN |
Supplement | 2155-6806 | 978-1-4673-2433-5 |
Citations | PageRank | References |
1 | 0.35 | 0 |
Authors | ||
4 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Fei Wang | 1 | 56 | 6.67 |
| Xiaofeng Wang | 2 | 98 | 9.41 |
| Xiaofeng Hu | 3 | 8 | 7.28 |
| Su, Jinshu | 4 | 750 | 96.41 |