МОДЕЛЮВАННЯ МЕРЕЖЕВИХ АТАК НА ОСНОВІ АНАЛІЗУ ГРАФУ МЕРЕЖЕВИХ ВЗАЄМОДІЙ.
Saved in:
| Title: | МОДЕЛЮВАННЯ МЕРЕЖЕВИХ АТАК НА ОСНОВІ АНАЛІЗУ ГРАФУ МЕРЕЖЕВИХ ВЗАЄМОДІЙ. |
|---|---|
| Alternate Title: | MODELING OF NETWORK ATTACKS BASED ON ANALYSIS OF THE GRAPH OF NETWORK INTERACTIONS. |
| Authors: | Шаповалов, Г. В.1, Хіжняк, Д.1 shapovalov@op.edu.ua |
| Source: | Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì. 2026, Vol. 16 Issue 3, p565-578. 14p. |
| Subjects: | Denial of service attacks, Computer network traffic, Anomaly detection (Computer security), Computer network security, Cyberterrorism |
| Abstract: | The problem of detecting network attacks based on the analysis of the graph of network interactions is considered. Based on the analysis of modern approaches to detecting port scan, DoS/DDoS and brute force attacks, the feasibility of using the representation of network traffic using a graph is justified and a mathematical model for detecting anomalous activity in time windows is formed. Flow data is pre-processed, a graph of network interactions is formed, node and edge metrics are calculated, indicators are normalized and suspicious nodes or pairs of nodes are highlighted. The simulation results were tested on the CICIDS2017 dataset. The results confirm the adequacy of the developed approach for detecting the characteristic features of port scan, DoS/DDoS, and brute force. [ABSTRACT FROM AUTHOR] |
| Copyright of Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì is the property of Odessa Polytechnic University and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.) | |
| Database: | Engineering Source |
| FullText | Links: – Type: pdflink Text: Availability: 0 |
|---|---|
| Header | DbId: egs DbLabel: Engineering Source An: 194922495 AccessLevel: 6 PubType: Academic Journal PubTypeId: academicJournal PreciseRelevancyScore: 0 |
| IllustrationInfo | |
| Items | – Name: Title Label: Title Group: Ti Data: МОДЕЛЮВАННЯ МЕРЕЖЕВИХ АТАК НА ОСНОВІ АНАЛІЗУ ГРАФУ МЕРЕЖЕВИХ ВЗАЄМОДІЙ. – Name: TitleAlt Label: Alternate Title Group: TiAlt Data: MODELING OF NETWORK ATTACKS BASED ON ANALYSIS OF THE GRAPH OF NETWORK INTERACTIONS. – Name: Author Label: Authors Group: Au Data: <searchLink fieldCode="AR" term="%22Шаповалов%2C+Г%2E+В%2E%22">Шаповалов, Г. В.</searchLink><relatesTo>1</relatesTo><br /><searchLink fieldCode="AR" term="%22Хіжняк%2C+Д%2E%22">Хіжняк, Д.</searchLink><relatesTo>1</relatesTo><i> shapovalov@op.edu.ua</i> – Name: TitleSource Label: Source Group: Src Data: <searchLink fieldCode="JN" term="%22Informatics+%26+Mathematical+Methods+in+Simulation+%2F+Informatika+ta+Matematičnì+Metodi+v+Modelûvannì%22">Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì</searchLink>. 2026, Vol. 16 Issue 3, p565-578. 14p. – Name: Subject Label: Subjects Group: Su Data: <searchLink fieldCode="DE" term="%22Denial+of+service+attacks%22">Denial of service attacks</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+network+traffic%22">Computer network traffic</searchLink><br /><searchLink fieldCode="DE" term="%22Anomaly+detection+%28Computer+security%29%22">Anomaly detection (Computer security)</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+network+security%22">Computer network security</searchLink><br /><searchLink fieldCode="DE" term="%22Cyberterrorism%22">Cyberterrorism</searchLink> – Name: Abstract Label: Abstract Group: Ab Data: The problem of detecting network attacks based on the analysis of the graph of network interactions is considered. Based on the analysis of modern approaches to detecting port scan, DoS/DDoS and brute force attacks, the feasibility of using the representation of network traffic using a graph is justified and a mathematical model for detecting anomalous activity in time windows is formed. Flow data is pre-processed, a graph of network interactions is formed, node and edge metrics are calculated, indicators are normalized and suspicious nodes or pairs of nodes are highlighted. The simulation results were tested on the CICIDS2017 dataset. The results confirm the adequacy of the developed approach for detecting the characteristic features of port scan, DoS/DDoS, and brute force. [ABSTRACT FROM AUTHOR] – Name: AbstractSuppliedCopyright Label: Group: Ab Data: <i>Copyright of Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì is the property of Odessa Polytechnic University and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract.</i> (Copyright applies to all Abstracts.) |
| PLink | https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=egs&AN=194922495 |
| RecordInfo | BibRecord: BibEntity: Identifiers: – Type: doi Value: 10.15276/imms.v16.no3.565 Languages: – Code: ukr Text: Ukrainian PhysicalDescription: Pagination: PageCount: 14 StartPage: 565 Subjects: – SubjectFull: Denial of service attacks Type: general – SubjectFull: Computer network traffic Type: general – SubjectFull: Anomaly detection (Computer security) Type: general – SubjectFull: Computer network security Type: general – SubjectFull: Cyberterrorism Type: general Titles: – TitleFull: МОДЕЛЮВАННЯ МЕРЕЖЕВИХ АТАК НА ОСНОВІ АНАЛІЗУ ГРАФУ МЕРЕЖЕВИХ ВЗАЄМОДІЙ. Type: main BibRelationships: HasContributorRelationships: – PersonEntity: Name: NameFull: Шаповалов, Г. В. – PersonEntity: Name: NameFull: Хіжняк, Д. IsPartOfRelationships: – BibEntity: Dates: – D: 01 M: 07 Text: 2026 Type: published Y: 2026 Identifiers: – Type: issn-print Value: 22235744 Numbering: – Type: volume Value: 16 – Type: issue Value: 3 Titles: – TitleFull: Informatics & Mathematical Methods in Simulation / Informatika ta Matematičnì Metodi v Modelûvannì Type: main |
| ResultId | 1 |