By Topic

Fast traffic anomalies detection using SNMP MIB correlation analysis

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Dong Cheul Lee ; Network Technol. Lab., KT Co. Ltd., Daejeon ; Byungjoo Park ; Ki Eung Kim ; Jae Jin Lee

Internet service providers (ISPs) should detect and control abnormal traffic fast for stable network management. One of the ways to detect traffic anomalies fast is shortening traffic collecting cycle. However, performance degradation is inevitable if a centralized traffic collection server gathers all traffic data from equipments in a large ISP. This paper presents an enhanced traffic collection algorithm that can gather traffic data frequently without degrading the performance by analyzing SNMP MIB objects correlation. The algorithm estimates the values of interface group objects by using ip group objects, thus, it reduces the number of collections. We evaluated this algorithm on KORNET backbone network. The performance degradation was not found on the experiment, and the accuracy of the algorithm was fairly good.

Published in:

Advanced Communication Technology, 2009. ICACT 2009. 11th International Conference on  (Volume:01 )

Date of Conference:

15-18 Feb. 2009