Flow-Based Compromise Detection: Lessons Learned

Rick Hofstede; Aiko  Pras; Anna  Sperotto; Gabi Dreo Rodosek

doi:10.1109/MSP.2018.1331021

Flow-Based Compromise Detection: Lessons Learned

Rick Hofstede, Aiko Pras, Anna Sperotto, Gabi Dreo Rodosek

Design and Analysis of Communication Systems

Research output: Contribution to journal › Article

Abstract

Although the aggregated nature of exported flow data provides many advantages in terms of privacy and scalability, flow data may contain artifacts that impair data analysis. In this article, we investigate the differences between flow data analysis in theory and practice — that is, in lab environments and production networks.

Language	English
Pages	82-89
Journal	IEEE security & privacy
Volume	16
Issue number	1
DOIs	10.1109/MSP.2018.1331021
State	Published - Jan 2018

Fingerprint

Data flow analysis

compromise

Scalability

data analysis

privacy

artifact

Cite this

Hofstede, R., Pras, A., Sperotto, A., & Dreo Rodosek, G. (2018). Flow-Based Compromise Detection: Lessons Learned. IEEE security & privacy, 16(1), 82-89. DOI: 10.1109/MSP.2018.1331021

Hofstede, Rick ; Pras, Aiko ; Sperotto, Anna ; Dreo Rodosek, Gabi. / Flow-Based Compromise Detection : Lessons Learned. In: IEEE security & privacy. 2018 ; Vol. 16, No. 1. pp. 82-89

@article{cf6bc4e4ad1e477cafce8c5b6e1204c4,

title = "Flow-Based Compromise Detection: Lessons Learned",

abstract = "Although the aggregated nature of exported flow data provides many advantages in terms of privacy and scalability, flow data may contain artifacts that impair data analysis. In this article, we investigate the differences between flow data analysis in theory and practice — that is, in lab environments and production networks.",

author = "Rick Hofstede and Aiko Pras and Anna Sperotto and {Dreo Rodosek}, Gabi",

year = "2018",

month = "1",

doi = "10.1109/MSP.2018.1331021",

language = "English",

volume = "16",

pages = "82--89",

journal = "IEEE security & privacy",

issn = "1540-7993",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "1",

}

Hofstede, R, Pras, A , Sperotto, A & Dreo Rodosek, G 2018, 'Flow-Based Compromise Detection: Lessons Learned' IEEE security & privacy, vol 16, no. 1, pp. 82-89. DOI: 10.1109/MSP.2018.1331021

Flow-Based Compromise Detection : Lessons Learned. / Hofstede, Rick; Pras, Aiko ; Sperotto, Anna ; Dreo Rodosek, Gabi.

In: IEEE security & privacy, Vol. 16, No. 1, 01.2018, p. 82-89.

Research output: Contribution to journal › Article

TY - JOUR

T1 - Flow-Based Compromise Detection

T2 - IEEE security & privacy

AU - Hofstede,Rick

AU - Pras,Aiko

AU - Sperotto,Anna

AU - Dreo Rodosek,Gabi

PY - 2018/1

Y1 - 2018/1

N2 - Although the aggregated nature of exported flow data provides many advantages in terms of privacy and scalability, flow data may contain artifacts that impair data analysis. In this article, we investigate the differences between flow data analysis in theory and practice — that is, in lab environments and production networks.

AB - Although the aggregated nature of exported flow data provides many advantages in terms of privacy and scalability, flow data may contain artifacts that impair data analysis. In this article, we investigate the differences between flow data analysis in theory and practice — that is, in lab environments and production networks.

U2 - 10.1109/MSP.2018.1331021

DO - 10.1109/MSP.2018.1331021

M3 - Article

VL - 16

SP - 82

EP - 89

JO - IEEE security & privacy

JF - IEEE security & privacy

SN - 1540-7993

IS - 1

ER -

Hofstede R, Pras A , Sperotto A, Dreo Rodosek G. Flow-Based Compromise Detection: Lessons Learned. IEEE security & privacy. 2018 Jan;16(1):82-89. Available from, DOI: 10.1109/MSP.2018.1331021

Access to Document

10.1109/MSP.2018.1331021