МОДЕЛЮВАННЯ МЕРЕЖЕВИХ АТАК НА ОСНОВІ АНАЛІЗУ ГРАФУ МЕРЕЖЕВИХ ВЗАЄМОДІЙ.

Saved in:
Bibliographic Details
Title: МОДЕЛЮВАННЯ МЕРЕЖЕВИХ АТАК НА ОСНОВІ АНАЛІЗУ ГРАФУ МЕРЕЖЕВИХ ВЗАЄМОДІЙ.
Alternate Title: MODELING OF NETWORK ATTACKS BASED ON ANALYSIS OF THE GRAPH OF NETWORK INTERACTIONS.
Authors: Шаповалов, Г. В.1, Хіжняк, Д.1 shapovalov@op.edu.ua
Source: Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì. 2026, Vol. 16 Issue 3, p565-578. 14p.
Subjects: Denial of service attacks, Computer network traffic, Anomaly detection (Computer security), Computer network security, Cyberterrorism
Abstract: The problem of detecting network attacks based on the analysis of the graph of network interactions is considered. Based on the analysis of modern approaches to detecting port scan, DoS/DDoS and brute force attacks, the feasibility of using the representation of network traffic using a graph is justified and a mathematical model for detecting anomalous activity in time windows is formed. Flow data is pre-processed, a graph of network interactions is formed, node and edge metrics are calculated, indicators are normalized and suspicious nodes or pairs of nodes are highlighted. The simulation results were tested on the CICIDS2017 dataset. The results confirm the adequacy of the developed approach for detecting the characteristic features of port scan, DoS/DDoS, and brute force. [ABSTRACT FROM AUTHOR]
Copyright of Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì is the property of Odessa Polytechnic University and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)
Database: Engineering Source
FullText Links:
  – Type: pdflink
Text:
  Availability: 0
Header DbId: egs
DbLabel: Engineering Source
An: 194922495
AccessLevel: 6
PubType: Academic Journal
PubTypeId: academicJournal
PreciseRelevancyScore: 0
IllustrationInfo
Items – Name: Title
  Label: Title
  Group: Ti
  Data: МОДЕЛЮВАННЯ МЕРЕЖЕВИХ АТАК НА ОСНОВІ АНАЛІЗУ ГРАФУ МЕРЕЖЕВИХ ВЗАЄМОДІЙ.
– Name: TitleAlt
  Label: Alternate Title
  Group: TiAlt
  Data: MODELING OF NETWORK ATTACKS BASED ON ANALYSIS OF THE GRAPH OF NETWORK INTERACTIONS.
– Name: Author
  Label: Authors
  Group: Au
  Data: <searchLink fieldCode="AR" term="%22Шаповалов%2C+Г%2E+В%2E%22">Шаповалов, Г. В.</searchLink><relatesTo>1</relatesTo><br /><searchLink fieldCode="AR" term="%22Хіжняк%2C+Д%2E%22">Хіжняк, Д.</searchLink><relatesTo>1</relatesTo><i> shapovalov@op.edu.ua</i>
– Name: TitleSource
  Label: Source
  Group: Src
  Data: <searchLink fieldCode="JN" term="%22Informatics+%26+Mathematical+Methods+in+Simulation+%2F+Informatika+ta+Matematičnì+Metodi+v+Modelûvannì%22">Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì</searchLink>. 2026, Vol. 16 Issue 3, p565-578. 14p.
– Name: Subject
  Label: Subjects
  Group: Su
  Data: <searchLink fieldCode="DE" term="%22Denial+of+service+attacks%22">Denial of service attacks</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+network+traffic%22">Computer network traffic</searchLink><br /><searchLink fieldCode="DE" term="%22Anomaly+detection+%28Computer+security%29%22">Anomaly detection (Computer security)</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+network+security%22">Computer network security</searchLink><br /><searchLink fieldCode="DE" term="%22Cyberterrorism%22">Cyberterrorism</searchLink>
– Name: Abstract
  Label: Abstract
  Group: Ab
  Data: The problem of detecting network attacks based on the analysis of the graph of network interactions is considered. Based on the analysis of modern approaches to detecting port scan, DoS/DDoS and brute force attacks, the feasibility of using the representation of network traffic using a graph is justified and a mathematical model for detecting anomalous activity in time windows is formed. Flow data is pre-processed, a graph of network interactions is formed, node and edge metrics are calculated, indicators are normalized and suspicious nodes or pairs of nodes are highlighted. The simulation results were tested on the CICIDS2017 dataset. The results confirm the adequacy of the developed approach for detecting the characteristic features of port scan, DoS/DDoS, and brute force. [ABSTRACT FROM AUTHOR]
– Name: AbstractSuppliedCopyright
  Label:
  Group: Ab
  Data: <i>Copyright of Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì is the property of Odessa Polytechnic University and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract.</i> (Copyright applies to all Abstracts.)
PLink https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=egs&AN=194922495
RecordInfo BibRecord:
  BibEntity:
    Identifiers:
      – Type: doi
        Value: 10.15276/imms.v16.no3.565
    Languages:
      – Code: ukr
        Text: Ukrainian
    PhysicalDescription:
      Pagination:
        PageCount: 14
        StartPage: 565
    Subjects:
      – SubjectFull: Denial of service attacks
        Type: general
      – SubjectFull: Computer network traffic
        Type: general
      – SubjectFull: Anomaly detection (Computer security)
        Type: general
      – SubjectFull: Computer network security
        Type: general
      – SubjectFull: Cyberterrorism
        Type: general
    Titles:
      – TitleFull: МОДЕЛЮВАННЯ МЕРЕЖЕВИХ АТАК НА ОСНОВІ АНАЛІЗУ ГРАФУ МЕРЕЖЕВИХ ВЗАЄМОДІЙ.
        Type: main
  BibRelationships:
    HasContributorRelationships:
      – PersonEntity:
          Name:
            NameFull: Шаповалов, Г. В.
      – PersonEntity:
          Name:
            NameFull: Хіжняк, Д.
    IsPartOfRelationships:
      – BibEntity:
          Dates:
            – D: 01
              M: 07
              Text: 2026
              Type: published
              Y: 2026
          Identifiers:
            – Type: issn-print
              Value: 22235744
          Numbering:
            – Type: volume
              Value: 16
            – Type: issue
              Value: 3
          Titles:
            – TitleFull: Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì
              Type: main
ResultId 1