CN107483251B - 一种基于分布式探针监测的网络业务异常侦测方法 - Google Patents
一种基于分布式探针监测的网络业务异常侦测方法 Download PDFInfo
- Publication number
- CN107483251B CN107483251B CN201710721647.7A CN201710721647A CN107483251B CN 107483251 B CN107483251 B CN 107483251B CN 201710721647 A CN201710721647 A CN 201710721647A CN 107483251 B CN107483251 B CN 107483251B
- Authority
- CN
- China
- Prior art keywords
- network
- matrix
- flow
- traffic
- nodes
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 239000000523 sample Substances 0.000 title claims abstract description 35
- 238000001514 detection method Methods 0.000 title claims abstract description 27
- 238000012544 monitoring process Methods 0.000 title claims abstract description 22
- 239000011159 matrix material Substances 0.000 claims abstract description 75
- 238000000034 method Methods 0.000 claims abstract description 30
- 238000012549 training Methods 0.000 claims abstract description 13
- 238000003745 diagnosis Methods 0.000 claims abstract description 12
- 230000005856 abnormality Effects 0.000 claims abstract description 11
- 238000004422 calculation algorithm Methods 0.000 claims description 46
- 238000009826 distribution Methods 0.000 claims description 31
- ZEFNOZRLAWVAQF-UHFFFAOYSA-N Dinitolmide Chemical compound CC1=C(C(N)=O)C=C([N+]([O-])=O)C=C1[N+]([O-])=O ZEFNOZRLAWVAQF-UHFFFAOYSA-N 0.000 claims description 19
- 230000006870 function Effects 0.000 claims description 15
- 238000005457 optimization Methods 0.000 claims description 12
- 230000001364 causal effect Effects 0.000 claims description 9
- 239000013598 vector Substances 0.000 claims description 9
- 230000002159 abnormal effect Effects 0.000 claims description 6
- 125000002015 acyclic group Chemical group 0.000 claims description 6
- 238000004088 simulation Methods 0.000 claims description 6
- 238000004458 analytical method Methods 0.000 claims description 3
- 238000004364 calculation method Methods 0.000 claims description 3
- 238000010586 diagram Methods 0.000 claims description 3
- 230000009286 beneficial effect Effects 0.000 abstract description 2
- 230000005540 biological transmission Effects 0.000 abstract description 2
- 238000005070 sampling Methods 0.000 description 7
- 238000011161 development Methods 0.000 description 6
- 238000007726 management method Methods 0.000 description 5
- 238000005516 engineering process Methods 0.000 description 4
- 239000000126 substance Substances 0.000 description 3
- 230000007423 decrease Effects 0.000 description 2
- 238000011160 research Methods 0.000 description 2
- 238000004891 communication Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000005259 measurement Methods 0.000 description 1
- YHXISWVBGDMDLQ-UHFFFAOYSA-N moclobemide Chemical compound C1=CC(Cl)=CC=C1C(=O)NCCN1CCOCC1 YHXISWVBGDMDLQ-UHFFFAOYSA-N 0.000 description 1
- 230000001737 promoting effect Effects 0.000 description 1
- 238000013179 statistical model Methods 0.000 description 1
- 238000003325 tomography Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/145—Network analysis or design involving simulating, designing, planning or modelling of a network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (6)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710721647.7A CN107483251B (zh) | 2017-08-22 | 2017-08-22 | 一种基于分布式探针监测的网络业务异常侦测方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710721647.7A CN107483251B (zh) | 2017-08-22 | 2017-08-22 | 一种基于分布式探针监测的网络业务异常侦测方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107483251A CN107483251A (zh) | 2017-12-15 |
CN107483251B true CN107483251B (zh) | 2020-02-21 |
Family
ID=60601206
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710721647.7A Active CN107483251B (zh) | 2017-08-22 | 2017-08-22 | 一种基于分布式探针监测的网络业务异常侦测方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107483251B (zh) |
Families Citing this family (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108460103B (zh) * | 2018-02-05 | 2019-10-15 | 百度在线网络技术(北京)有限公司 | 信息获取方法和装置 |
CN108400907B (zh) * | 2018-02-08 | 2021-06-01 | 安徽农业大学 | 一种不确定网络环境下的链路丢包率推理方法 |
CN108965017B (zh) * | 2018-07-27 | 2021-05-25 | 中国联合网络通信集团有限公司 | 一种网络流量预测方法和装置 |
CN109214456A (zh) * | 2018-09-06 | 2019-01-15 | 深圳先进技术研究院 | 一种网络异常检测方法、系统及电子设备 |
CN109617743B (zh) * | 2019-01-10 | 2022-05-13 | 北京新宇航星科技有限公司 | 网络性能监测与业务测试系统及测试方法 |
CN110430224B (zh) * | 2019-09-12 | 2021-11-16 | 贵州电网有限责任公司 | 一种基于随机块模型的通信网络异常行为检测方法 |
US20220345396A1 (en) * | 2019-09-17 | 2022-10-27 | Nec Corporation | Information processing apparatus, packet generation method, system, and program |
CN111314121A (zh) * | 2020-02-03 | 2020-06-19 | 支付宝(杭州)信息技术有限公司 | 链路异常检测方法以及装置 |
CN111884874B (zh) * | 2020-07-15 | 2022-02-01 | 中国舰船研究设计中心 | 一种基于可编程数据平面的舰船网络实时异常检测方法 |
CN112101439B (zh) * | 2020-09-09 | 2023-11-28 | 浙江大学 | 基于分布式贝叶斯网络的高速线材质量缺陷诊断与溯源方法 |
CN112291226B (zh) * | 2020-10-23 | 2022-05-27 | 新华三信息安全技术有限公司 | 一种网络流量的异常检测方法及装置 |
CN112988438B (zh) * | 2021-01-15 | 2022-09-09 | 国家电网有限公司客户服务中心 | 一种基于流数据多点组合监测分析方法及系统 |
CN112817823A (zh) * | 2021-02-05 | 2021-05-18 | 杭州和利时自动化有限公司 | 一种网络状态监控方法、装置及介质 |
CN113705721B (zh) * | 2021-09-08 | 2023-05-23 | 哈尔滨工业大学 | 梁桥支座群脱空病害的联合概率密度函数差诊断方法 |
CN116318761B (zh) * | 2022-09-09 | 2024-02-06 | 广州天懋信息系统股份有限公司 | 基于大数据分析多步实时控制链路检测方法及系统 |
CN115865645A (zh) * | 2022-12-22 | 2023-03-28 | 中移动信息技术有限公司 | 链路确定方法、装置、设备、介质及产品 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101060444A (zh) * | 2007-05-23 | 2007-10-24 | 西安交大捷普网络科技有限公司 | 基于贝叶斯统计模型的网络异常检测方法 |
CN103023725A (zh) * | 2012-12-20 | 2013-04-03 | 北京工业大学 | 一种基于网络流量分析的异常检测方法 |
CN104994056A (zh) * | 2015-05-11 | 2015-10-21 | 中国电力科学研究院 | 一种电力信息网络中流量识别模型的动态更新方法 |
Family Cites Families (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9894486B2 (en) * | 2015-06-03 | 2018-02-13 | Rutgers, The State University Of New Jersey | Tracking service queues using single-point signal monitoring |
GB2547202B (en) * | 2016-02-09 | 2022-04-20 | Darktrace Ltd | An anomaly alert system for cyber threat detection |
-
2017
- 2017-08-22 CN CN201710721647.7A patent/CN107483251B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101060444A (zh) * | 2007-05-23 | 2007-10-24 | 西安交大捷普网络科技有限公司 | 基于贝叶斯统计模型的网络异常检测方法 |
CN103023725A (zh) * | 2012-12-20 | 2013-04-03 | 北京工业大学 | 一种基于网络流量分析的异常检测方法 |
CN104994056A (zh) * | 2015-05-11 | 2015-10-21 | 中国电力科学研究院 | 一种电力信息网络中流量识别模型的动态更新方法 |
Non-Patent Citations (1)
Title |
---|
"宽带网络流量矩阵估计的自适应正则贝叶斯方法ARBM";唐健 等;《通信理论与信号处理新进展-2005年通信理论与信号处理年会论文集》;20050630;第823-828页 * |
Also Published As
Publication number | Publication date |
---|---|
CN107483251A (zh) | 2017-12-15 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107483251B (zh) | 一种基于分布式探针监测的网络业务异常侦测方法 | |
Andreoletti et al. | Network traffic prediction based on diffusion convolutional recurrent neural networks | |
Fontugne et al. | Scaling in internet traffic: a 14 year and 3 day longitudinal study, with multiscale analyses and random projections | |
US8503320B2 (en) | Available bandwidth estimation in a packet-switched communication network | |
Nie et al. | Modeling network traffic for traffic matrix estimation and anomaly detection based on Bayesian network in cloud computing networks | |
Jiang et al. | An approximation method of origin–destination flow traffic from link load counts | |
CN111800414A (zh) | 一种基于卷积神经网络的流量异常检测方法及系统 | |
Ferriol-Galmés et al. | RouteNet-Fermi: Network modeling with graph neural networks | |
Quer et al. | Cognitive network inference through bayesian network analysis | |
Zhou et al. | Internet traffic classification using feed-forward neural network | |
Wang et al. | xnet: Improving expressiveness and granularity for network modeling with graph neural networks | |
Stefanova et al. | Off-policy q-learning technique for intrusion response in network security | |
Liu et al. | Prediction and correction of traffic matrix in an IP backbone network | |
Utic et al. | A survey of reinforcement learning in intrusion detection | |
Jiang et al. | ML-based pre-deployment SDN performance prediction with neural network boosting regression | |
Hagos et al. | Recurrent neural network-based prediction of tcp transmission states from passive measurements | |
Li et al. | Distributed quickest detection in sensor networks via two-layer large deviation analysis | |
CN115022191B (zh) | 一种IPv6网络中端到端流快速反演方法 | |
Rodrigues et al. | Improving the traffic prediction capability of neural networks using sliding window and multi-task learning mechanisms | |
Sahay et al. | Traffic convergence detection in IoT LLNs: a multilayer perceptron based mechanism | |
Singhal et al. | Optimal sampling in state space models with applications to network monitoring | |
Flinta et al. | Predicting round-trip time distributions in iot systems using histogram estimators | |
Liu et al. | QoE assessment model based on continuous deep learning for video in wireless networks | |
Zarpelão et al. | Parameterized anomaly detection system with automatic configuration | |
Jin et al. | Open World Learning Graph Convolution for Latency Estimation in Routing Networks |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB03 | Change of inventor or designer information |
Inventor after: Xia Fei Inventor after: Di Zhuo Inventor after: Gao Xiao Inventor after: Meng Fanbo Inventor after: Liu Qingfan Inventor after: Wang Peng Inventor after: Jiao Mingcheng Inventor after: Yang Heng Inventor after: Guo Shiying Inventor after: Chen Guoshun Inventor after: Wang Yiru Inventor before: Xia Fei Inventor before: Di Zhuo Inventor before: Gao Xiao Inventor before: Meng Fanbo Inventor before: Liu Qingfan Inventor before: Wang Peng Inventor before: Jiao Mingcheng Inventor before: Yang Heng Inventor before: Guo Shiying Inventor before: Chen Guoshun Inventor before: Wang Yiru |
|
CB03 | Change of inventor or designer information | ||
GR01 | Patent grant | ||
GR01 | Patent grant |