Design and development of the network architecture for detecting anomalies in network logging system
| Project/Area Number |
26330110
|
|---|
| Research Category |
Grant-in-Aid for Scientific Research (C)
|
| Allocation Type | Multi-year Fund |
|---|
| Section | 一般 |
|---|
| Research Field |
Information network
|
|---|
| Research Institution | Tohoku Institute of Technology |
|---|
Principal Investigator |
|
|---|
| Project Period (FY) |
2014-04-01 – 2017-03-31
|
| Project Status |
Completed (Fiscal Year 2016)
|
| Budget Amount *help |
¥4,680,000 (Direct Cost: ¥3,600,000、Indirect Cost: ¥1,080,000)
Fiscal Year 2016: ¥1,170,000 (Direct Cost: ¥900,000、Indirect Cost: ¥270,000)
Fiscal Year 2015: ¥1,950,000 (Direct Cost: ¥1,500,000、Indirect Cost: ¥450,000)
Fiscal Year 2014: ¥1,560,000 (Direct Cost: ¥1,200,000、Indirect Cost: ¥360,000)
|
|---|
| Keywords | ロギング / セキュア・ネットワーク / ネットワーク管理 / 情報システム |
|---|
| Outline of Final Research Achievements |
Nowadays, log information plays a vital role in the network operation and security management area. Thus, this research tackled the development of the anomaly detection architecture and element technologies for a logging system. In this study, we presented that the prototype application for monitoring configuration information of logging applications in a network, analyzing monitored configuration and visualizing the results on network maps. The visualization will help network administrators to detect defects in their logging system easily. We also discussed the method to measure the number of log messages sent and received by a logging application by tracing some system calls called by the logging application. Besides, we designed the data model for monitoring the number of log messages for collecting that information efficiently.
|
Report
(4 results)
Research Products
(6 results)
