Další formáty:
BibTeX
LaTeX
RIS
@inproceedings{16274, author = {Čeleda, Pavel and Velan, Petr and Rábek, Martin and Hofstede, Rick and Pras, Aiko}, address = {Ghent, Belgium}, booktitle = {IFIP/IEEE International Symposium on Integrated Network Management (IM 2013)}, keywords = {geolocation; GeoIP; ISO 3166; NetFlow; NFDUMP; NfSen; security; detection; anomaly}, howpublished = {elektronická verze "online"}, language = {eng}, location = {Ghent, Belgium}, isbn = {978-1-4673-5229-1}, pages = {1015-1020}, publisher = {IEEE Xplore Digital Library}, title = {Large-Scale Geolocation for NetFlow}, year = {2013} }
TY - JOUR ID - 16274 AU - Čeleda, Pavel - Velan, Petr - Rábek, Martin - Hofstede, Rick - Pras, Aiko PY - 2013 TI - Large-Scale Geolocation for NetFlow PB - IEEE Xplore Digital Library CY - Ghent, Belgium SN - 9781467352291 KW - geolocation KW - GeoIP KW - ISO 3166 KW - NetFlow KW - NFDUMP KW - NfSen KW - security KW - detection KW - anomaly N2 - Current approaches perform geolocation mostly on-demand and in a small-scale fashion. As soon as geolocation needs to be performed in real-time in high-speed and large-scale networks, these approaches are not scalable anymore. To solve this problem, we propose two approaches to large-scale geolocation. Firstly, we present an exporter-based approach, which adds geolocation data to flow records in a way that is transparent to any flow collector. Secondly, we present a flow collector-based approach, which adds native geolocation to NetFlow data from any flow exporter. After presenting prototypes for both approaches, we demonstrate the applicability of large-scale geolocation by means of use cases. ER -
ČELEDA, Pavel, Petr VELAN, Martin RÁBEK, Rick HOFSTEDE a Aiko PRAS. Large-Scale Geolocation for NetFlow. Online. In \textit{IFIP/IEEE International Symposium on Integrated Network Management (IM 2013)}. Ghent, Belgium: IEEE Xplore Digital Library, 2013, s.~1015-1020. ISBN~978-1-4673-5229-1.
|