Collaborative network traffic analysis via alternating direction method of multipliers

Liangfu Lu, Zhenghai Huang*, Xuyun Zhang, Lianyong Qi, Sicong Chen, Yao Wu

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contribution

Abstract

As one of the hot issues in the research on complicated network, collaborative network traffic analysis plays a core role in improving network performance, analyzing network behaviors and predicting abnormal traffic, especially from large-scale network data sets. Several approaches on flow-level traffic data analysis have been proposed about analyzing the structure and situation of the network. Different from the state-of-the-art, we first propose a new decomposition model based on the alternating direction method of multipliers for packet-level traffic data. In addition, we present the iterative scheme of the algorithm for network anomaly detection problem, which is termed NTA-ADMM. Based on this approach, we can carry out intrusion detection for packet-level network traffic data, no matter whether it is polluted by noise or not. Finally, we design a prototype system for network anomaly detection such as unauthorized access from a remote machine to a local machine (R2L) attack and so on. The experiments have shown that our approach is effective in revealing the patterns of network traffic data and detecting attacks from large-scale network traffic. Moreover, the experiments have demonstrated the robustness of the algorithm even when the network traffic is polluted by the large volume anomalies and noise.

Original languageEnglish
Title of host publicationProceedings of the 2018 IEEE 22nd International Conference on Computer Supported Cooperative Work in Design
Subtitle of host publicationCSCWD
EditorsJean-Paul Barthes, Haibin Zhu, Junzhou Luo, Weiming Shen, Jinghui Zhang, Fang Dong
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Pages547-552
Number of pages6
ISBN (Electronic)9781538614822
ISBN (Print)9781538614839
DOIs
Publication statusPublished - 2018
Externally publishedYes
Event22nd IEEE International Conference on Computer Supported Cooperative Work in Design (CSCWD) - Nanjing
Duration: 9 May 201811 May 2018

Publication series

NameInternational Conference on Computer Supported Cooperative Work in Design
PublisherIEEE

Conference

Conference22nd IEEE International Conference on Computer Supported Cooperative Work in Design (CSCWD)
CityNanjing
Period9/05/1811/05/18

Keywords

  • Collaborative Network security
  • Network traffic analysis
  • Anomaly detection
  • Alternating direction method of multipliers

Cite this