Julien Aussibal

Learn More
The objective of this paper is to describe a new distributed intrusion detection system (IDS) based on CVSS framework. This new platform uses a wide set of classical IDS and detection entities. This distributed IDS aims to improve the discovery of anomalies by reducing the rate of false positives and false negatives. Entities correlate the different alerts(More)
We design Distributed Denial of Service (DDoS) detection procedures based on a non Gaussian modeling of the marginal distributions of aggregated Internet traffic. The theoretical and practical relevances of this modeling is illustrated and discussed. From this modeling, various statistical distances (Mean Quadratic Distance of Kullback Divergence) between(More)
An anomaly detection procedure based on statistical profiles of sketches of internet traffic is proposed. To validate its statistical performance, measurement campaigns were conducted to collect regular traffic as well as traffic with anomalies, on the Renater network. Anomalies were produced using real-world DDoS tools (tfn2k, trin00). The attacks target(More)
  • 1