Change Detection Algorithms for Information Assurance of Computer Networks

Abstract

As our reliance on computer networks grows, the need for better and more accurate intrusion detection systems to identify and contain attackers becomes a fundamental research topic. In this thesis, the author will focus on the detection of three attack scenarios: the spreading of active worms throughout the Internet, distributed denial of service attacks, and routing attacks to wireless ad hoc networks. For the first two attacks, he will determine anomalous changes in the network flow. For the third attack, he provides an abstract representation of a highly mobile ad hoc network to establish a baseline for detecting abnormalities generated by intrusions that change the behavior of the routing protocol. The author considers these problems in the framework of sequential change detection theory, as he wants to detect the appearance of an attack early in its development.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2002
Accession Number
ADA438668

Entities

People

  • Alvaro A. Cardenas

Organizations

  • University of Maryland

Tags

Communities of Interest

  • Cyber
  • Energy and Power Technologies
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Algorithms
  • Change Detection
  • Computational Science
  • Computer Networks
  • Denial Of Service Attack
  • Detection
  • Detectors
  • Hidden Markov Models
  • Intrusion Detection
  • Mesh Networks
  • Mobile Ad Hoc Networks
  • Network Topology
  • Probability
  • Routing Protocols
  • Sensor Networks
  • Stochastic Processes
  • Supervised Machine Learning

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Sensor Fusion and Tracking Systems.
  • Theoretical Analysis.