Designing an extended IP with variable FP granularity for time-series traffic-based anomaly detection and enhancing the security of aerospace defense networks
Department of Electrical Engineering, Bey. C., Islamic Azad University, Beyza, Iran
Abstract
In the field of network anomaly detection in the Internet Protocol (IP) architecture, a variety of methods have been proposed. Since the network behavior is reflected in the communication traffic, anomaly detection should be possible by analyzing the communication traffic flows correctly. In large-scale IP networks, traffic flows are allocated and encapsulated by headers along with the communication operator, and it is difficult to observe and accurately detect the occurrence of anomalies in individual communication flows in the form of coarser information, and the flow obtained by flow measurement protocols (IP Information Export) is the result of combining different communication flows with different characteristics.
In this study, an anomaly detection method based on time series traffic flows is proposed. First, the composite traffic flows are implemented using a system called Fast Proxy, which can decompose traffic flows into individual flows with very fine granularity and detect anomalies in the decomposed flows based on a simple correlation analysis and dynamic threshold configuration. The proposed method detects anomalies caused by service failures with almost 100% accuracy and even achieves an accuracy of about 80% to 90% in more difficult detection cases, such as small traffic fluctuations or noisy conditions.
varamini,G. (2025). Designing an extended IP with variable FP granularity for time-series traffic-based anomaly detection and enhancing the security of aerospace defense networks. (e247). Aerospace Defense, 4(3), e247
MLA
varamini,G. . "Designing an extended IP with variable FP granularity for time-series traffic-based anomaly detection and enhancing the security of aerospace defense networks" .e247 , Aerospace Defense, 4, 3, 2025, e247.
HARVARD
varamini G. (2025). 'Designing an extended IP with variable FP granularity for time-series traffic-based anomaly detection and enhancing the security of aerospace defense networks', Aerospace Defense, 4(3), e247.
CHICAGO
G. varamini, "Designing an extended IP with variable FP granularity for time-series traffic-based anomaly detection and enhancing the security of aerospace defense networks," Aerospace Defense, 4 3 (2025): e247,
VANCOUVER
varamini G. Designing an extended IP with variable FP granularity for time-series traffic-based anomaly detection and enhancing the security of aerospace defense networks. Aerospace Defense, 2025; 4(3): e247.
