The possibility of using LACP protocol in anomaly detection systems
This article presents the use of the Link Aggregation Control Protocol (LACP) for detection of anomalies in network traffic. The idea itself is based on checking the representativeness of a single LACP link for the whole traffic transmitted by the aggregation. This approach allows to reduce the requ...
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
EDP Sciences
2018-01-01
|
| Series: | ITM Web of Conferences |
| Online Access: | https://doi.org/10.1051/itmconf/20182100014 |
| id |
doaj-485e99ed893d4216aa4b7924a3cd66f4 |
|---|---|
| record_format |
Article |
| spelling |
doaj-485e99ed893d4216aa4b7924a3cd66f42021-04-02T13:50:27ZengEDP SciencesITM Web of Conferences2271-20972018-01-01210001410.1051/itmconf/20182100014itmconf_cst2018_00014The possibility of using LACP protocol in anomaly detection systemsBolanowski Marek0Cisło PiotrDeptartament of Complex Systems, Faculty of Electrical and Computer Engineering, Rzeszow University of TechnologyThis article presents the use of the Link Aggregation Control Protocol (LACP) for detection of anomalies in network traffic. The idea itself is based on checking the representativeness of a single LACP link for the whole traffic transmitted by the aggregation. This approach allows to reduce the requirements for the performance of threat detection systems, and thus reduce their implementation costs and the gives a possibility of using probes (IDS or IPS) directly in the core of the network. The authors also examine the influence of hashing algorithms used for the particular LACP link on the possibility of using of developed method and on the level of intrusion detection.https://doi.org/10.1051/itmconf/20182100014 |
| collection |
DOAJ |
| language |
English |
| format |
Article |
| sources |
DOAJ |
| author |
Bolanowski Marek Cisło Piotr |
| spellingShingle |
Bolanowski Marek Cisło Piotr The possibility of using LACP protocol in anomaly detection systems ITM Web of Conferences |
| author_facet |
Bolanowski Marek Cisło Piotr |
| author_sort |
Bolanowski Marek |
| title |
The possibility of using LACP protocol in anomaly detection systems |
| title_short |
The possibility of using LACP protocol in anomaly detection systems |
| title_full |
The possibility of using LACP protocol in anomaly detection systems |
| title_fullStr |
The possibility of using LACP protocol in anomaly detection systems |
| title_full_unstemmed |
The possibility of using LACP protocol in anomaly detection systems |
| title_sort |
possibility of using lacp protocol in anomaly detection systems |
| publisher |
EDP Sciences |
| series |
ITM Web of Conferences |
| issn |
2271-2097 |
| publishDate |
2018-01-01 |
| description |
This article presents the use of the Link Aggregation Control Protocol (LACP) for detection of anomalies in network traffic. The idea itself is based on checking the representativeness of a single LACP link for the whole traffic transmitted by the aggregation. This approach allows to reduce the requirements for the performance of threat detection systems, and thus reduce their implementation costs and the gives a possibility of using probes (IDS or IPS) directly in the core of the network. The authors also examine the influence of hashing algorithms used for the particular LACP link on the possibility of using of developed method and on the level of intrusion detection. |
| url |
https://doi.org/10.1051/itmconf/20182100014 |
| work_keys_str_mv |
AT bolanowskimarek thepossibilityofusinglacpprotocolinanomalydetectionsystems AT cisłopiotr thepossibilityofusinglacpprotocolinanomalydetectionsystems AT bolanowskimarek possibilityofusinglacpprotocolinanomalydetectionsystems AT cisłopiotr possibilityofusinglacpprotocolinanomalydetectionsystems |
| _version_ |
1721563810800599040 |