Design of Hybrid Network Anomalies Detection System (H-NADS) Using IP Gray Space Analysis

Yogendra Kumar JAIN; Sandip S. PATIL

Informatică economică (Jan 2009)

Design of Hybrid Network Anomalies Detection System (H-NADS) Using IP Gray Space Analysis

Yogendra Kumar JAIN,
Sandip S. PATIL

Affiliations

Yogendra Kumar JAIN
Sandip S. PATIL

Journal volume & issue: Vol. 13, no. 2
pp. 110 – 119

Abstract

Read online

In Network Security, there is a major issue to secure the public or private network from abnormal users. It is because each network is made up of users, services and computers with a specific behavior that is also called as heterogeneous system. To detect abnormal users, anomaly detection system (ADS) is used. In this paper, we present a novel and hybrid Anomaly Detection System with the uses of IP gray space analysis and dominant scanning port identification heuristics used to detect various anomalous users with their potential behaviors. This methodology is the combination of both statistical and rule based anomaly detection which detects five types of anomalies with their three types of potential behaviors and generates respective alarm messages to GUI.

Published in Informatică economică

ISSN: 1453-1305 (Print); 1842-8088 (Online)
Publisher: Inforec Association
Country of publisher: Romania
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Electronics: Computer engineering. Computer hardware; Bibliography. Library science. Information resources
Website: http://revistaie.ase.ro

About the journal

Abstract

Keywords