Share Email Print

Proceedings Paper

Distributed pattern detection in cyber networks
Author(s): Randy C. Paffenroth; Philip C. Du Toit; Louis L. Scharf; Anura P. Jayasumana; Vidarshana W. Banadara; Ryan Nong
Format Member Price Non-Member Price
PDF $14.40 $18.00
cover GOOD NEWS! Your organization subscribes to the SPIE Digital Library. You may be able to download this paper for free. Check Access

Paper Abstract

In this paper we describe an approach for the detection and classication of weak, distributed patterns in sensor networks. Of course, before one can begin development of a pattern detection algorithm, one must rst dene the term "pattern", which by nature is a broad and inclusive term. One of the key aspects of our work is a denition of pattern that has already proven eective in detecting anomalies in real world data. While designing detection algorithms for all classes of patterns in all types of networks sounds appealing, this approach would almost certainly require heuristic methods and only cursory statements of performance. Rather, we have specically studied the problem of intrusion detection in computer networks in which a pattern is an abnormal or unexpected spatio-temporal dependence in the data collected across the nodes. We do not attempt to match an a priori template, but instead have developed algorithms that allow the pattern to reveal itself in the data by way of dependence or independence of observed time series. Although the problem is complex and challenging, recent advances in ℓ1 techniques for robust matrix completion, compressed sensing, and correlation detection provide promising opportunities for progress. Our key contribution to this body of work is the development of methods that make an accounting of uncertainty in the measurements on which the inferences are based. The performance of our methods will be demonstrated on real world data, including measured data from the Abilene Internet2 network.

Paper Details

Date Published: 4 May 2012
PDF: 13 pages
Proc. SPIE 8408, Cyber Sensing 2012, 84080J (4 May 2012); doi: 10.1117/12.919587
Show Author Affiliations
Randy C. Paffenroth, Numerica Corp. (United States)
Philip C. Du Toit, Numerica Corp. (United States)
Louis L. Scharf, Colorado State Univ. (United States)
Anura P. Jayasumana, Colorado State Univ. (United States)
Vidarshana W. Banadara, Colorado State Univ. (United States)
Ryan Nong, Numerica Corp. (United States)

Published in SPIE Proceedings Vol. 8408:
Cyber Sensing 2012
Igor V. Ternovskiy; Peter Chin, Editor(s)

© SPIE. Terms of Use
Back to Top