A Simple Traffic Model using Graph Clustering for Anomaly Detection

J. Tölle and C. de Waal (Germany)


Traffic Modelling, Anomaly Detection, Graph Clustering


This paper presents a description and first practical results of a new approach for detecting anomalies of the traffic structure in computer networks, based on a simple traffic model. The system supervises the typical communication structure in the network and discovers sudden variations. The description of the system is followed by a presentation of experimental results in a laboratory environment.

