In this study we introduce SKETURE, a packet analysis tool leveraging a sketch-based architecture. SKETURE generates statistical summaries that describe the behavior of each node in a network without violating users' privacy. It also extracts information from each packet it processes instead of sampling packets avoiding thus the risk to lose valuable information. We argue that statistical sketches are better suited than signatures to detect insider threats as they can capture any anomalous behavior. © 2015 ACM.

SKETURE: A sketch-based packet analysis tool

MIGLIARDI, MAURO
2015

Abstract

In this study we introduce SKETURE, a packet analysis tool leveraging a sketch-based architecture. SKETURE generates statistical summaries that describe the behavior of each node in a network without violating users' privacy. It also extracts information from each packet it processes instead of sampling packets avoiding thus the risk to lose valuable information. We argue that statistical sketches are better suited than signatures to detect insider threats as they can capture any anomalous behavior. © 2015 ACM.
2015
Proceedings of the 7th ACM CCS International Workshop on Managing Insider Security Threats, co-located with CCS 2015
2-s2.0-84956699052
978-145033824-0
04.01 - Contributo in atti di convegno
File in questo prodotto:
Non ci sono file associati a questo prodotto.
Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11577/3193052
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 3
  • ???jsp.display-item.citation.isi??? ND
social impact