Program/Track A/A.2.2/Network traffic preparation for its states analysis by the aggregated data packets partial correlations method
Network traffic preparation for its states analysis by the aggregated data packets partial correlations method
Dmitrii Nikol'skii, Andrei Krasnov
The aggregation procedures network traffic data packets for the analysis of its states by the partial correlations method of aggregated data packets are described. The headers of network traffic data packets parameters transformation to time series of its aggregated data packets are presented. The novelty of the approach lies in the fact that the streams of network traffic aggregated data packets are formed considering bit flags from the TCP header of the TCP/IP data transmission protocol. The approach has shown high efficiency for identifying various types of DDoS attacks.