Automatic Detection of Network Traffic Anomalies and Changes Conference Paper

abstract

• 2019 Association for Computing Machinery. Accurately predicting network behavior is beneficial for TCP congestion control, and can help improve routing, allocating network resources, and optimizing network designs. This task is challenging because many factors could affect network traffic, such as the number of network sessions and synthetic reordering. There are also many ways to measure the network state, such as the number of retransmissions per flow and packet duplication. For this work, we use a set of passive TCP flow measurements collected at a major computer center on multiple data transfer nodes (DTN). To assist the operations of the computer network, we propose to detect abnormally slow network transfers in real-time. The proposed system breaks the network monitoring logs into fixed-size chunks and employs a state of art classifier to identify the slow time windows. This method will be validated on real large datasets collected from several DTNs. The proposed method is able to generate models to quickly detect large intervals of low performing network transfers, which require attention from network engineers.

name of conference

• Proceedings of the ACM Workshop on Systems and Network Telemetry and Analytics

authors

• Kim, Jinoh

published proceedings

• Proceedings of the ACM Workshop on Systems and Network Telemetry and Analytics

author list (cited authors)

• Syal, A., Lazar, A., Kim, J., Sim, A., & Wu, K.

citation count

• 6

complete list of authors

• Syal, Astha||Lazar, Alina||Kim, Jinoh||Sim, Alex||Wu, Kesheng

publication date

• June 2019

publisher

• Association for Computing Machinery (ACM)  Publisher

Digital Object Identifier (DOI)

• 10.1145/3322798.3329255

International Standard Book Number (ISBN) 13

• 9781450367615

start page

• 3

end page

• 10

URL

• http://dx.doi.org/10.1145/3322798.3329255