In this study we introduce SKETURE, a packet analysis tool leveraging a sketch-based architecture. SKETURE generates statistical summaries that describe the behavior of each node in a network without violating users' privacy. It also extracts information from each packet it processes instead of sampling packets avoiding thus the risk to lose valuable information. We argue that statistical sketches are better suited than signatures to detect insider threats as they can capture any anomalous behavior. © 2015 ACM.
SKETURE: A sketch-based packet analysis tool
MIGLIARDI, MAURO
2015
Abstract
In this study we introduce SKETURE, a packet analysis tool leveraging a sketch-based architecture. SKETURE generates statistical summaries that describe the behavior of each node in a network without violating users' privacy. It also extracts information from each packet it processes instead of sampling packets avoiding thus the risk to lose valuable information. We argue that statistical sketches are better suited than signatures to detect insider threats as they can capture any anomalous behavior. © 2015 ACM.File in questo prodotto:
Non ci sono file associati a questo prodotto.
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.