Netinfo Security ›› 2019, Vol. 19 ›› Issue (8): 22-28.doi: 10.3969/j.issn.1671-1122.2019.08.004

Previous Articles     Next Articles

Research on Traffic Data Sampling Technology in Network Attack Detection

Liangchen CHEN1,2,3, Baoxu LIU2,4(), Shu GAO1   

  1. 1. School of Computer Science and Technology, Wuhan University of Technology, Wuhan Hubei 430063, China
    2. Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100049, China
    3. School of Applied Technology, China University of Labor Relations, Beijing 100048, China
    4. School of Cyber Security, University of Chinese Academy of Sciences, Beijing 100049, China
  • Received:2019-04-15 Online:2019-08-10 Published:2020-05-11

Abstract:

The key to network attack detection is to quickly identify unknown network attack behaviors by analyzing network traffic. In the big data environment, how to reduce the network traffic data to be processed by data sampling technology without affecting the anomaly detection effect, and filter out the subsets of fine-grained anomaly detection to provide reliable data support for network attack detection is an important issue in the research of network intrusion detection system. It is also the focus of current research on network behavior analysis, network measurement analysis, network anomaly detection and network traffic model. This paper summarizes the basic concepts, research progress and existing problems of network traffic data sampling technology in attack detection, and summarizes and forecasts the challenges and development trend of network traffic data sampling technology. This paper can provide reference for further exploring new methods and technologies in the field of network attack detection.

Key words: network traffic, network attack detection, traffic data reduction, traffic data sampling, cyber security

CLC Number: