Statistical Techniques for Detecting Internet Traffic Anomalies

Funding Agency: Army Research Office (ARO), Computing and Information Sciences.

Award Number: W911NF-09-1-0492.

Principal Investigator: Yannis Paschalidis, Boston University.

Project Summary

This short-term project aims at further developing statistical anomaly detection approaches that can be used to monitor the aggregate Internet traffic associated with a group of computer systems. It will built on recent work by the PI on random and Markovian models for characterizing typical traffic distributions and detecting deviations from them. In addition, it will develop an approach for combining inputs from several traffic anomaly detectors to detect spatial anomalies that could identify a more global and coordinated attack campaign.