%0 Conference Proceedings
%T Distributed Architecture for Real-time Traffic Analysis
%+ Department of Informatics
%A Morariu, Cristian
%A Stiller, Burkhard
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 4th International Conference on Autonomous Infrastructure, Management and Security (AIMS)
%C Zurich, Switzerland
%Y Burkhard Stiller; Filip Turck
%I Springer
%3 Mechanisms for Autonomous Management of Networks and Services
%V LNCS-6155
%P 171-174
%8 2010-06-23
%D 2010
%R 10.1007/978-3-642-13986-4_25
%Z Computer Science [cs]/Digital Libraries [cs.DL]Conference papers
%X Traditional real-time IP traffic analysis applied on todays' high-speed network links suffers from the lack of scalability. Although sampling proves to be a promising approach, there are application scenarios foreseen, in which decisions cannot be based on sampled data, e.g., for usage- based charging or intrusion detection systems. Moreover, traditional traffic analysis mechanisms do not map the traffic observed in the network to a particular user, but rather to a particular end-node, which may have been shared by several users. Thus, DARTA (Distributed Architecture for Real-time Traffic Analysis) develops a model for distributed IP traffic analysis and introduces new mechanisms for three different aspects in IP traffic monitoring: (a) a framework enabling the development of distributed traffic analysis applications, (b) a distributed packet capture mechanism, (c) an user-based IP traffic accounting for mapping IP traffic to individual users.
%G English
%2 https://inria.hal.science/hal-01056630/document
%2 https://inria.hal.science/hal-01056630/file/61550171.pdf
%L hal-01056630
%U https://inria.hal.science/hal-01056630
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-LNCS-6155
%~ IFIP-AIMS
%~ IFIP-2010