Logo des Repositoriums
 
Textdokument

Infrastructure anomaly detection: A cloud-native architecture at Germany’s Federal Employment Agency

Lade...
Vorschaubild

Volltext URI

Dokumententyp

Zusatzinformation

Datum

2022

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Verlag

Gesellschaft für Informatik, Bonn

Zusammenfassung

In prior research we explored the use of time series analysis methods to detect one class of information technology (IT) infrastructure anomalies - Distributed Denial of Service (DDoS) attacks. The results of this prior work were a mathematical model and a prototype implementation that were concretely trialed and operated in the data centers of Germany's Federal Employment Agency (FEA). With this paper, we go one step further and generalize as well as optimize the mathematical model and create higher performance and scalability for an updated prototype through targeted use of cloud technologies. The starting point of our generalization is the Exponential Smoothing (E-S) approach, which underlies, for example, the well-known Holt-Winters method. This method is used to predict univariate time series. To detect anomalies (such as DDoS attacks) in infrastructure data, we extend the E-S approach to enable it to forecast multivariate time series. In this optimization of our method and our prototype, we take an exploratory, agile approach. Furthermore, we present a cloud-native architecture stack which we pilot in Azure.

Beschreibung

Herget,Gebhard; Sultanow,Eldar; Chircu,Alina; Ludsteck,Johannes; Hammer,Sebastian; Koch,Christian; Reuter,Willy; Seßler,Matthias (2022): Infrastructure anomaly detection: A cloud-native architecture at Germany’s Federal Employment Agency. INFORMATIK 2022. DOI: 10.18420/inf2022_101. Gesellschaft für Informatik, Bonn. PISSN: 1617-5468. ISBN: 978-3-88579-720-3. pp. 1181-1193. (Agiles) Enterprise Architecture Management in Forschung und Praxis. Hamburg. 26.-30. September 2022

Zitierform

Tags