I have to admit, I wouldn't think of monitoring traffic to be network security, but then I realized that police often "monitor traffic" on the road to try and catch speeding "criminals", so I guess it should have made more sense.
Anyways, ASTUTE (a networking traffic monitor that looks for anomalies) takes an interesting approach in that it doesn't rely on previous data to find anomalies. While I don't understand the entire procedure it follows, I understand that this is a novel idea and, from the results, it appears to work fairly well compared to existing anomaly detectors.
Although anomaly detection doesn't focus only on network security, it is a benefit, on top of being able to find faults with the network structure and other intriguing events in the network. One thing I did learn from this paper was how many different ways there were to detect and prevent network attacks and that network security research can also be beneficial to more than just a single focused area.
No comments:
Post a Comment