Learn More
Sign Up
Login

Login

Login failed. Please try again.

Email
Password

Forgot your password?

Login with Facebook

Search

Advanced Filters:
Title contains these words:
Author: Last name, First name
Date:
to

Specific Data Sources:

All Edit
- Acta Geoturistica
- Am. Soc for Pharma & Experimental Therapeutics
- American Academy of Orthopaedic Surgeons
- American Association for Clinical Chemistry
- American Association of Cancer Research
- American Economic Association
- American Institute of Physics
- American Journal of Neuroradiology
- American Meteorological Society
- American Physical Society (APS)
- American Psychiatric Publishing, Inc (Book)
- American Psychiatric Publishing, Inc (Journal)
- American Public Health Association
- American Society for Investigative Pathology
- American Society For Microbiology
- American Society for Nutrition
- American Society of Plant Biologist
- American Vacuum Society
- Annual Reviews
- arXiv (Cornell University)
- Association for Computing Machinery
- Berghahn Books
- Centre for Agricultural Bioscience International
- Clinical Trials
- DailyMed
- de Gruyter
- Duke University Press
- Ecological Society of America
- Edinburgh University Press
- Elsevier
- Emerald Publishing
- European Journal of Tourism Research
- European Medicines Agency
- European Patent Office Abstracts
- Fed of American Socs for Experimental Biology
- Genetics Society of America
- Health Affairs
- Hindawi Publishing Corporation
- i-manager Publications
- iMedPub, Internet Medical Publishing
- Informa Healthcare
- INFORMS
- Institute of Physics
- International Union of Crystallography
- IOS Press
- JB&JS
- Left Coast Press
- Liverpool University Press
- M.E. Sharpe
- Mary Ann Liebert
- MEDLINE Abstracts
- MIT Press
- Nature Publishing Group (NPG)
- Oxford University Press
- Pier Professional
- PNAS
- Portland Press
- PsycARTICLES®
- PsycBOOKS®
- PsycCRITIQUES®
- Public Library of Science (PLoS) Journal
- PubMed Central
- Radiological Society of North America, Inc.
- Rockefeller University Press
- Royal College of Nursing (RCN)
- Royal Irish Academy
- Royal Society of Chemistry
- SAGE
- SPIE
- Springer Journals
- Springer Protocols
- Taylor & Francis
- The American Physiological Society
- The Scientist
- University of California Press
- US Patent Office Abstracts
- Wiley
- World IP Organization PCT Abstracts
Select All | Select None

Journal Article Info:
- Journal Name:
- Publisher:
- ISSN:

Browse

Journals ACM SIGCOMM Computer Communication Review Volume 38 Issue 4

Enriching Network Security Analysis with Time Travel Gregor Maier TU Berlin / DT Labs Robin Sommer ICSI / LBNL Holger Dreger Siemens AG Corporate Technology Anja Feldmann TU Berlin / DT Labs Vern Paxson ICSI / UC Berkeley Fabian Schneider TU Berlin / DT Labs ABSTRACT In many situations it can be enormously helpful to archive the raw contents of a network traf c stream to disk, to enable later inspection of activity that becomes interesting only in retrospect. We present a Time Machine (TM) for network traf c that provides such a capability. The TM leverages the heavy-tailed nature of network ows to capture nearly all of the likely-interesting traf c while storing only a small fraction of the total volume. An initial proof-of-principle prototype established the forensic value of such an approach, contributing to the investigation of numerous attacks at a site with thousands of users. Based on these experiences, a rearchitected implementation of the system provides exible, highperformance traf c stream capture, indexing and retrieval, including an interface between the TM and a real-time network intrusion detection system (NIDS). The NIDS controls the TM by dynamically adjusting recording parameters, instructing it to permanently store suspicious

End of preview. The entire article is 12 pages. To view the full-text, please rent this article to continue.

Doc Info Zoom Zoom In Zoom Out

First Page Previous Page Next Page

of 12

/lp/association-for-computing-machinery/enriching-network-security-analysis-with-time-travel-GeJwWo0mNZ

Welcome to DeepDyve! Rent Premier Research Articles and Save Up to 90%

Rent to View Full Text 14-Day Free Trial

Print Page Download

Enriching network security analysis with time travel

Maier, Gregor; Sommer, Robin; Dreger, Holger; Feldmann, Anja; Paxson, Vern; Schneider, Fabian

Follow ACM SIGCOMM Computer Communication Review , Volume 38 (4)
Association for Computing Machinery – Oct 1, 2008

Keep track of journals you're interested in! Follow this journal to get new article updates on your personalized homepage.

More Info

Publisher Association for Computing Machinery
Copyright Copyright © 2008 by ACM Inc.
ISSN 0146-4833
D.O.I. 10.1145/1402946.1402980
Publisher site Get PDF

Share this article: facebook twitter

More Like This Article

View All dataSource[]=actageo&dataSource[]=aspet&dataSource[]=aaos&dataSource[]=aacc&dataSource[]=aacr&dataSource[]=aea&dataSource[]=aip&dataSource[]=ajnr&dataSource[]=ams&dataSource[]=aps_physical&dataSource[]=appi_book&dataSource[]=appi_journal&dataSource[]=apha&dataSource[]=asip&dataSource[]=asm&dataSource[]=asn&dataSource[]=aspb&dataSource[]=avs&dataSource[]=annual_reviews&dataSource[]=arxiv&dataSource[]=acm&dataSource[]=berghahn&dataSource[]=cabi&dataSource[]=clinical_trials&dataSource[]=dailymed&dataSource[]=degruyter&dataSource[]=du_press&dataSource[]=esa&dataSource[]=eu_press&dataSource[]=elsevier&dataSource[]=emerald&dataSource[]=ejtr&dataSource[]=emea&dataSource[]=epo&dataSource[]=faseb&dataSource[]=gsa&dataSource[]=health_affairs&dataSource[]=hindawi&dataSource[]=imanager&dataSource[]=imedpub&dataSource[]=informa_healthcare&dataSource[]=informs&dataSource[]=iop&dataSource[]=iucr&dataSource[]=iospress&dataSource[]=jbjs&dataSource[]=leftcoast&dataSource[]=lu_press&dataSource[]=mesharpe&dataSource[]=mary_ann_liebert&dataSource[]=medline&dataSource[]=mit_press&dataSource[]=nature&dataSource[]=oxford&dataSource[]=pier_professional&dataSource[]=pnas&dataSource[]=portlandpress&dataSource[]=psyc_articles&dataSource[]=psyc_books&dataSource[]=psyc_critiques&dataSource[]=plos_journal&dataSource[]=pubmed_central&dataSource[]=rsna&dataSource[]=rockefeller&dataSource[]=rcn&dataSource[]=ria&dataSource[]=rsc&dataSource[]=sage&dataSource[]=spie&dataSource[]=springer_journal&dataSource[]=springer&dataSource[]=taylor_francis&dataSource[]=aps&dataSource[]=the_scientist&dataSource[]=uc_press&dataSource[]=uspto_abstract&dataSource[]=wiley&dataSource[]=pct

Browse: Subject Areas | Journals | Publishers

Welcome to DeepDyve

Simple. Afforable. Research.

DeepDyve — the simplest way to get the articles you need.

About
Company Facebook Twitter
Support
How It Works FAQ Contact Us

© 2012 DeepDyve, Inc. All rights reserved. Terms of Service | Privacy Policy

About DeepDyve

DeepDyve provides simple and affordable access to millions of articles across thousands of peer-reviewed journals. Content from the world's leading publishers including Reed Elsevier, Springer, Wiley-Blackwell, and more. DeepDyve — the simplest way to get the articles you need.
Rent from the Cloud - starting at $0.99
With DeepDyve, you can "rent" and read an article through your browser— for as little as $0.99. What exactly is "renting"? Renting an article means you can read the full article as often as you like until it expires (7 days or longer), but it cannot be downloaded or printed. Renting allows you to save up to 90%, so you can read articles without the worry.

"Rent to Own" — Buy PDF's, Save up to 20%
With DeepDyve's monthly plans (starting at $5.99), you not only get savings on rentals, you also receive 20% discount coupons for your PDF purchases. What happens if you don't use all your rental tokens or coupons this month? No problem, they automatically roll-over so you can stockpile them for when you need them.
14-day Risk Free Trial — Commitment Free, Cancel Anytime

Still thinking it over? Then try our service for free for 14 days. You can cancel at any time within the trial, no questions asked, and your credit card will not be billed. Should you continue with our service beyond the trial, you will only be charged month-to-month, so you can still cancel at any time — there's no contract or long-term commitment.
Privacy and Security

DeepDyve values your privacy and security. We will never sell your personal information to any third party.

Sign Up for a DeepDyve Account

Bookmark an Article

To bookmark an article, please log in first, or sign up for a DeepDyve account if you don't already have one.

Subscribe to Journal Email Alerts

To subscribe to email alerts, please log in first, or sign up for a DeepDyve account if you don't already have one.

Thank you for renting with DeepDyve

Your PayPal account has been charged $2.99. You now have access to the full text of this article. A rental receipt has also been sent to your email address.

Your credit card has been charged $2.99. You now have access to the full text of this article. A rental receipt has also been sent to your email address.

New! You can now keep track of new articles from ACM SIGCOMM Computer Communication Review on your personalized homepage! Learn more

PDF Download — Not Available

Thanks for your interest in purchasing the PDF. Your request has been noted and we will work with our publisher partner to discuss enabling this feature.

In the meantime, you can get the PDF by visiting the publisher site.

Thank you for purchasing with DeepDyve

Your PayPal account has been charged $.

Your credit card has been charged $.

You can now download this article. A purchase receipt has also been sent to your email address.

Download This Article or I'm done with my download

Print Page — Not Available

Thanks for your interest in printing individual pages. Your request has been noted and we will work with our publisher partner to discuss enabling this feature.

In the meantime, you can get the PDF by visiting the publisher site.

Thank you for printing with DeepDyve

Your PayPal account has been charged $0.

Your credit card has been charged $0.

You can now print this article. A purchase receipt has also been sent to your email address.

Print the Selected Pages or I'm done with my printing

Please refresh to generate a new download link

Your article download link has expired. Please refresh this page to obtain a new download link and try again.

Follow a Journal

To get new article updates from a journal on your personalized homepage, please log in first, or sign up for a DeepDyve account if you don't already have one.