Your search keyword '"network monitoring"' showing total 5,335 results

1. Adaptive sampling method for network traffic security monitoring based on queuing theory

Author

Maciej Sosnowski and Piotr Wiśniewski

Subjects

sampling, dpi, network monitoring, system state distribution, Electrical engineering. Electronics. Nuclear engineering, TK1-9971, Telecommunication, TK5101-6720

Abstract

Present network monitoring systems need to cope with the ever-increasing amount of traffic in modern high-speed networks. These systems often perform sophisticated deep packet inspection (DPI) for anomaly detection, denial-of-service attacks detection and mitigation, intrusion detection and prevention, etc. Since DPI is resource-intensive, the monitoring devices are often not able to analyze all incoming traffic at link speeds. Consequently, sampling is employed to reduce the traffic volume and thus limit packet losses caused by resource exhaustion. Classical sampling methods select packets based on a fixed limiting parameter, regardless of the computational resource utilization of the monitoring device. This paper proposes a novel sampling approach for network traffic security monitoring that is based on an analytical model of the monitoring device. The model allows for testing adaptive sampling strategies that adjust the instantaneous sampling rate according to the input queue occupancy. The queue occupancy is used to drive the adaptation as it indicates the current relationship between available computational resources and the input traffic volume. Consequently, our approach maximizes the DPI ratio while simultaneously ensuring that the probability of packet loss due to resource exhaustion remains negligible. Analytical and simulation results are presented to demonstrate the impact of the proposed method on system parameters, along with a comparative studies.

Published

2024

2. Studying the Impact of Different TCP DoS Attacks on the Parameters of VoIP Streams

Author

Ivan Nedyalkov

Subjects

Asterisk Free PBX, DoS attacks, GNS3, jitter, modeling of IP networks, network monitoring, Computer engineering. Computer hardware, TK7885-7895, Electronic computers. Computer science, QA75.5-76.95

Abstract

In today’s digital world, no one and nothing is safe from potential cyberattacks. There is also no 100% protection from such attacks. Therefore, it is advisable to carry out various studies related to the effects of the different cyberattacks on the performance of the specific devices under attack. In this work, a study was carried out to determine how individual TCP DoS attacks affect the parameters of VoIP (Voice over IP) voice and video streams. For the purpose of this work, a model of a simple IP network has been created using the GNS3 IP network-modeling platform. The VoIP platform used was Asterisk Free PBX. Tools from Kali Linux were used to implement the individual TCP DoS attacks; IP-network-monitoring tools and round-trip-delay-measurement tools were also used. The proposed study is applicable to multiple VoIP platforms wherein voice and video traffic are passed/processed by the VoIP server. From the obtained results, it was found that Asterisk Free PBX is very well secured against TCP DoS attacks, which do not affect the platform performance or the parameters of the voice and video streams. The values of the observed parameters, such as jitter, packet loss, round-trip delay, etc., are very far from the maximum allowable values. We also observed a low load on the CPU and RAM of the system during the whole study.

Published

2024

3. Studying the Impact of Different TCP DoS Attacks on the Parameters of VoIP Streams.

Author

Nedyalkov, Ivan

Subjects

DENIAL of service attacks, STREAMING video & television, IP networks, DIGITAL technology, CYBERTERRORISM

Abstract

In today's digital world, no one and nothing is safe from potential cyberattacks. There is also no 100% protection from such attacks. Therefore, it is advisable to carry out various studies related to the effects of the different cyberattacks on the performance of the specific devices under attack. In this work, a study was carried out to determine how individual TCP DoS attacks affect the parameters of VoIP (Voice over IP) voice and video streams. For the purpose of this work, a model of a simple IP network has been created using the GNS3 IP network-modeling platform. The VoIP platform used was Asterisk Free PBX. Tools from Kali Linux were used to implement the individual TCP DoS attacks; IP-network-monitoring tools and round-trip-delay-measurement tools were also used. The proposed study is applicable to multiple VoIP platforms wherein voice and video traffic are passed/processed by the VoIP server. From the obtained results, it was found that Asterisk Free PBX is very well secured against TCP DoS attacks, which do not affect the platform performance or the parameters of the voice and video streams. The values of the observed parameters, such as jitter, packet loss, round-trip delay, etc., are very far from the maximum allowable values. We also observed a low load on the CPU and RAM of the system during the whole study. [ABSTRACT FROM AUTHOR]

Published

2024

4. Improved Routing for the In-Band Network Telemetry Problem

Author

N’Diaye, Thierno Bocar, Luizelli, Marcelo Caggiani, Degila, Jules, Buriol, Luciana Salete, and Vlachos, Dimitrios, editor

Published

2024

5. Load Balancing and Energy Efficient Routing in Software-Defined Networking

Author

Ramkumar, M. P., Rani, J. Lece Elizabeth, Jeyarohini, R., Selvan, G. S. R. Emil, Konar, Rahul Shiva, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Das, Prodipto, editor, Begum, Shahin Ara, editor, and Buyya, Rajkumar, editor

Published

2024

6. Toward Anomaly Detection Using Explainable AI

Author

Nguyen, Manh-Dung, La, Vinh-Hoa, Mallouli, Wissam, Cavalli, Ana Rosa, Oca, Edgardo Montes de, Sadovykh, Andrey, editor, Truscan, Dragos, editor, Mallouli, Wissam, editor, Cavalli, Ana Rosa, editor, Seceleanu, Cristina, editor, and Bagnato, Alessandra, editor

Published

2024

7. Multicore underground power line health monitoring using optical fiber bragg grating.

Author

WAHAB, M. Hazwan, RAHMAN, Mohammad Syuhaimi A. B., IBRAHIM, Ahmad Asrul, AHMAD ABAS, A. H., and AHMAD, Norhidayah

Subjects

FIBER Bragg gratings, OPTICAL fibers, ELECTROMAGNETIC interference, PASSIVE optical networks, ELECTRIC lines, MULTICORE processors, HEALTH care networks

Abstract

Copyright of Przegląd Elektrotechniczny is the property of Przeglad Elektrotechniczny and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2024

8. Detecting Malicious Devices in IPSEC Traffic with IPv4 Steganography.

Author

Jekateryńczuk, Gabriel, Jankowski, Damian, Veyland, René, and Piotrowski, Zbigniew

Subjects

DENIAL of service attacks, CRYPTOGRAPHY, COMPUTER network security, DATA privacy

Abstract

This study investigates the application of steganography for enhancing network security by detecting and promptly eliminating malicious packets to prevent flooding and consequent denial of service attacks while also identifying malicious equipment. The paper discusses foundational concepts such as the prisoner's dilemma, covert channels, qualitative metrics, and existing steganography techniques in computer communications. An architecture was developed to assess the effectiveness of this solution, and experiments were conducted, with their results presented. This contribution leverages established steganographic principles and seamlessly integrates with widely adopted IPsec protocols, offering a solution to improve covert communication within computer networks. [ABSTRACT FROM AUTHOR]

Published

2024

9. Optimizing in-band network telemetry problem.

Author

N'Diaye, Thierno Bocar, Luizelli, Marcelo Caggiani, Degila, Jules, and Buriol, Luciana Salete

Subjects

TELEMETRY, NETWORK performance, MATHEMATICAL models

Abstract

In-band network telemetry is a powerful framework for network monitoring. It allows the collection of telemetry data in real-time and provides network-wide visibility. However, depending on the routing of network flows and which telemetry data are collected, the network-wide visibility and the performance of monitoring applications may decrease. In this paper, we present the in-band network telemetry problem and extend the existing mathematical optimization models of the problem by proposing a new model that computes the routing of network flows. Results show that the new model outperforms existing models in term of network coverage and monitoring applications performance. The results of this work can be useful for network managers and enterprises to gain real-time insights into network performance. [ABSTRACT FROM AUTHOR]

Published

2024

10. KALI LINUX - A SIMPLE AND EFFECTIVE WAY TO STUDY THE LEVEL OF CYBER SECURITY AND PENETRATION TESTING OF POWER ELECTRONIC DEVICES.

Author

Nedyalkov, Ivan and Georgiev, Georgi

Subjects

ELECTRONIC equipment, INTERNET security, DENIAL of service attacks, COMPUTER performance

Abstract

The work presents the possibility to use Kali Linux in the process of power electronic devices research, which has not been applied before. Several of the built-in tools of Kali Linux have been used for the purpose of the research. Nmap has been used for vulnerability testing - scanning for open ports and finding out specific, well-known security vulnerabilities by using specific scripts. Wireshark and Burp Suite have been used to find out if the exchanged information is secure or not. hping3 has been used to scan for open ports and generating different TCP DoS attacks, thus studying what is the response of the power electronic device when it is subjected to different TCP DoS attacks - can it be accessed or not, has it experienced any performance violation, etc. Based on the results of this research, it can be argued that Kali Linux is applicable and can be used during the process of power electronic device research. [ABSTRACT FROM AUTHOR]

Published

2024

11. Packet sniffing

Author

Paravathi, C, Roshini, D, and Nayak, Shwetha S

Published

2024

12. Geo-localized Network Data Analysis Using VIKOR: Application of Network Health Monitoring in Turkey

Author

Cihan Şahin

Subjects

geolocation, vikor, telecommunication, data analysis, network monitoring, coğrafi konumlama, telekomünikasyon, veri analizi, ağ izleme, Electronic computers. Computer science, QA75.5-76.95, Technology (General), T1-995, Communication. Mass media, P87-96

Abstract

Middle-high level managers of operators of telecommunications have to follow many key parameters to increase the profitability along with strategy of company. Therefore, easily readable data are being provided to managers by experts. With large screens in rooms, these data are monitored momentarily and ensured to take necessary actions without creating customer dissatisfaction. Especially for operators, it is one of the key parameters to manage the network in a quality and healthy way without creating complaints. It is important to monitor network health with appointed criteria and methods. In this context, there have been weights of province-based network health by processing geolocation-based big data and using the VIKOR method. Thus, there will have been presented the network monitoring opportunity from instant real user information to managers. Although there is a lot of criteria and methods for network monitoring, it will have been one of the priority studies that will enable the analysis of geo location data with a MCDM method in this area.

Published

2024

13. Utility-based sampling rate allocation in in-band network telemetry for high network visibility

Author

Kyeongtak Lee, Heewon Kim, Subin Han, Sangheon Pack, Hyunkyung Yoo, and Namseok Ko

Subjects

Network monitoring, Programmable data plane, In-band network telemetry, Information technology, T58.5-58.64

Abstract

In-band network telemetry (INT) is one of the promising technologies for achieving fine-grained and real-time visibility into the network, however, it brings non-negligible traffic overhead due to the increased packet length. Several sampling methods have been introduced to reduce the INT overhead; although, the provision of satisfactory network visibility was not well investigated. In this paper, we introduce a utility-based INT sampling rate allocation scheme, namely uINT, that aims to reduce data redundancy while improving network visibility. We conducted experiments using the software switches and demonstrated that uINT reduces redundantly collected INT data by up to 15% compared to sINT.

Published

2024

14. Secure Federated Learning for Multi-Party Network Monitoring

Author

Oleksandr Lytvyn and Giang Nguyen

Subjects

Network monitoring, federated learning, secret sharing, secure aggregation, time-series modeling, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Network monitoring is essential for IT infrastructure health, enabling proactive threat detection, bandwidth optimization, and data analysis. Federated Learning facilitates collaboration and expands threat detection capabilities by allowing multiple clients to train models while preserving privacy and security without compromising sensitive information. This work explores the application of Federated Learning for secure network monitoring by investigating its use in various data partitioning settings to train Deep Learning models across multiple data partitions, incorporating secure aggregation to enhance data privacy. We propose an approach for multiparty training of deep neural networks for time series-based network load forecasting with secure aggregation. Our approach shows that a collaboratively trained model, on horizontal partitions, performs 11%-14% better than model training only on a single partition of that type. The model trained on vertical partitions achieved performance comparable to that of the models trained on a complete data set. Finally, examining the proposed approach on horizontal and vertical partitions proved its viability in both aggregation settings, regular and secure. These contributions demonstrate the feasibility of Federated Learning to improve interoperability between multiple organizations while addressing privacy and security concerns.

Published

2024

15. Architecture, Performance, and Usability of Mobile Cellular Network Monitoring Applications for Data-Driven Analysis

Author

Srikant Manas Kala, Malvika Mishra, Amogh Biju, Vanlin Sathya, Tatsuya Amano, Teruo Higashino, Hirozumi Yamaguchi, and Bheemarjuna Reddy Tamma

Subjects

Network monitoring, network measurements, data extraction, data analysis, cellular networks, network optimization, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Network monitoring is essential for operators to review and optimize network behaviour, and to troubleshoot any issues that arise. With the adoption of unlicensed band and spectrum-sharing technologies, conventional optimization techniques are no longer feasible. As cellular networks grow in complexity, data-driven solutions are becoming increasingly central to ensuring optimal network performance, reliability, and user experience. Recent cellular research has focused on data-driven analysis and optimization to ensure high Quality of Service in a cellular network. However, the biggest challenge for such work is data collection at scale from sophisticated and reliable network monitoring tools. This work bridges a gap in cellular network literature with a thorough review of cellular network monitoring tools. We rigorously test and review eleven applications that are popularly used to collect information on cellular networks. We understand, analyze, and critique their architecture to assess their reliability. We share insights on their performance and ease of use. Most importantly, we analyze the ability of applications to collect accurate cellular network data at scale. We also review recent literature on cellular network monitoring and analysis after carefully selecting 32 papers relevant to the topic.

Published

2024

16. The Missing Link in Network Intrusion Detection: Taking AI/ML Research Efforts to Users

Author

Katharina Dietz, Michael Muhlhauser, Jochen Kogel, Stephan Schwinger, Marleen Sichermann, Michael Seufert, Dominik Herrmann, and Tobias Hosfeld

Subjects

Anomaly detection, artificial intelligence, intrusion detection, machine learning, network monitoring, privacy, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Intrusion Detection Systems (IDS) tackle the challenging task of detecting network attacks as fast as possible. As this is getting more complex in modern enterprise networks, Artificial Intelligence (AI) and Machine Learning (ML) have gained substantial popularity in research. However, their adoption into real-world IDS solutions remains poor. Academic research often overlooks the interconnection of users and technical aspects. This leads to less explainable AI/ML models that hinder trust among AI/ML non-experts. Additionally, research often neglects secondary concerns such as usability and privacy. If IDS approaches conflict with current regulations or if administrators cannot deal with attacks more effectively, enterprises will not adopt the IDS in practice. To identify those problems systematically, our literature survey takes a user-centric approach; we examine IDS research from the perspective of stakeholders by applying the concept of personas. Further, we investigate multiple factors limiting the adoption of AI/ML in security and suggest technical, non-technical, and user-related considerations to enhance the adoption in practice. Our key contributions are threefold. (i) We derive personas from realistic enterprise scenarios, (ii) we provide a set of relevant hypotheses in the form of a review template, and (iii), based on our reviews, we derive design guidelines for practical implementations. To the best of our knowledge, this is the first paper that analyzes practical adoption barriers of AI/ML-based intrusion detection solutions concerning appropriateness of data, reproducibility, explainability, practicability, usability, and privacy. Our guidelines may help researchers to holistically evaluate their AI/ML-based IDS approaches to increase practical adoption.

Published

2024

17. CLINT: Controller-Assisted Lightweight In-Band Network Telemetry

Author

Konstantinos Papadopoulos and Panagiotis Papadimitriou

Subjects

In-band network telemetry (INT), network monitoring, software-defined networks, programmable dataplanes, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

The increasing need for high-precision monitoring and network-wide observability has spurred significant interest in In-Band Network Telemetry (INT), which empowers the collection of monitoring data directly from the dataplane, thus, alleviating the various shortcomings of passive monitoring techniques. INT, in some of its initial forms (e.g., P4-INT), tends to accumulate per-hop telemetry values within each packet, introducing substantial transmission overhead. Recent efforts to alleviate this shortcoming spread per-hop telemetry values among multiple packets, but eventually cause other implications, such as INT data redundancy or collisions during state lookup, stemming from the probabilistic data structures that they employ. Along these lines, we stress on the need for a lightweight INT approach with deterministic behavior. To this end, we present a new INT approach (Controller-Assisted Lightweight In-Band Network Telemetry – CLINT) that relies on a telemetry controller for the coordination of INT nodes, through the update of telemetry states, which indicate at each instance the telemetry action that should be applied to each incoming packet. We discuss in detail the operation of CLINT, as well as its prototype implementation using P4 BMv2 and the P4Runtime API. Our evaluation results indicate that CLINT outperforms two state-of-the-art lightweight INT techniques (i.e., PINT and DLINT) in terms of monitoring efficiency and network update detection, while maintaining an insignificant control communication overhead.

Published

2024

18. Detecting Top-k Flows Combining Probabilistic Sketch and Sliding Window

Author

Keke Zheng, Wenzhu Chen, Botao Feng, and Hanxin Zhang

Subjects

Network measurement, sketch, sliding window, top-k flows detection, approximate measurement, network monitoring, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Efficient real-time top-k flows measurement plays a pivotal role in enhancing both network performance and security, including tasks such as timely traffic scheduling, optimizing network latency and identifying potential security threats. However, traditional methods for detecting top-k flows suffer from decreased accuracy and high memory overhead. Furthermore, many existing methods overlook finer-grained measurements, such as the detection within the latest short time intervals. With the increasing expansion scale and link speed of the network, an accurate real-time top-k flows identified method is required. This paper proposes wSketch, a novel sketch-based method for real-time top-k flows detection. The innovations of wSketch are that it combines with the sliding window model and circular queue model, and introduces a novel probabilistic update solution. The probabilistic update mechanism gives the larger flow a greater chance of retention, the sliding window model focuses on the latest flow in the last $\mathbb {W}$ time units, and the circular queue reduces memory consumption. Therefore, wSketch provides insights into the current network situation and does well in anticipating future trends. The experimental results showcase wSketch’s superior performance, achieving over 96% accuracy with a small memory size of 20KB.

Published

2024

19. Unveiling YouTube QoE Over SATCOM Using Deep-Learning

Author

Matthieu Petrou, David Pradas, Mickael Royer, and Emmanuel Lochin

Subjects

Deep learning, HTTP adaptive video streaming, machine learning, network monitoring, QoE, SATCOM, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

The importance of stored streaming video for current Internet traffic is undeniable, even in the context of satellite communications (SATCOM). Therefore, Internet service providers aim to deliver the highest quality of experience to their end users, although they are not able to assess it directly. Some machine learning techniques proposed in the literature have demonstrated their ability to predict the quality of experience based on traffic data analysis. However, these models cannot be directly applied in a SATCOM context without considering the specific characteristics of satellite links. Furthermore, some of them may not be suitable for real-time use. In this study, we monitored over 2,400 YouTube video sessions over an emulated satellite network to develop models capable of predicting the initial delay, played resolution, and stalling events. The collected dataset is available as an open source to the research community. The primary objective of this research is to provide a functional model for real-time applications. To achieve this, we reduced the required feature set to minimize computation time and resources, enabling a practical real-time implementation of the model while assessing its feasibility. We show that we successfully achieved a substantial reduction in the number of features while also observing a relative improvement in prediction. Our results yield prediction performance comparable to that of other studies on terrestrial networks. Using the reduced feature set, we present a real-time implementation and confirm the real-time viability of our work.

Published

2024

20. Enhancing university network management and security: a real-time monitoring, visualization & cyber attack detection approach using Paessler PRTG and Sophos Firewall

Author

Fathima, Afrah and Devi, G. Shree

Published

2024

21. Study the Level of Network Security and Penetration Tests on Power Electronic Device.

Author

Nedyalkov, Ivan

Subjects

ELECTRONIC equipment, DENIAL of service attacks, ELECTRONIC surveillance, CYBERTERRORISM, COMPUTER network security, COMPUTER performance

Abstract

This work demonstrates the feasibility of using Kali Linux in the process of power electronic device research. The novelty in this work is the use of Kali Linux in the process of power electronic device research. This operating system is mainly used for the penetration testing of various communication devices but not for power electronic device research. The aim of this work is to study the level of network security (the type of security vulnerabilities that a power electronic device has) and whether the data exchange between the power electronic device and the monitoring and control center is secure. Additionally, penetration testing has been carried out. Kali Linux was used to implement these tasks. Penetration testing was performed to verify how the studied power electronic device reacted to various TCP DoS attacks—could it be accessed, was it blocked, etc. Kali Linux and some of the tools built into the operating system—Nmap, hping3, Wireshark, Burp Suite Community Edition—were used for this study. During the penetration tests, a characterization of the traffic being processed/generated by the studied power electronic device was carried out to evaluate and analyze what impact each TCP DoS attack had on the device's performance. In order to conduct the study, an experimental setup was designed. This experimental network was not connected to other networks, so the cyber attacks were controlled and confined within the experimental network. The research carried out validated the use of Kali Linux for the study of power electronic devices. From the obtained results, it is found that the studied power electronic device provides a certain level of network security, but the data exchange is insecure. [ABSTRACT FROM AUTHOR]

Published

2024

22. Utilizing hybrid computing models for network monitoring and security analysis through optical network modeling and data analytics.

Author

Reddy, Sudhakar, Rastogi, Ajay, Gupta, Mukur, Sharma, Vikas, Kolluru, Dakshinamurthy V., and Nair, Amrutha V.

Subjects

*COMPUTER network security, *OPTICAL transport networks, *MACHINE learning, *ANOMALY detection (Computer security), *DATA modeling

Abstract

Safe and reliable data transport over optical networks is essential for a high-speed Internet. Optical fibres are the backbone of the Internet, allowing billions of people around the world to connect and exchange data. However, these cables can be compromised by both deliberate attacks and accidental damage. The disruption caused by these abnormalities may result in significant monetary and data losses, undermine the security of optical networks by enabling unauthorised parties to view the sent data, or progressively lower network performance. Based on an examination of data from optical networks, this research proposes an original strategy for hybrid machine learning-based network monitoring and security improvement. Here, an anomaly detection method called convolutional principal component network is utilised to keep an eye on the optical infrastructure. Then, we apply hybrid cloud vector Bayesian graph networks to fortify the system. Anomaly detection rate, accuracy, precision rate, and quality of service are all experimentally evaluated across a variety of security analysis datasets. We validate our research using data from operational networks and simulated data created in a realistic-looking simulator. The findings verify the efficacy of our approach for optimising routing decisions in real time and designing networks for the future. [ABSTRACT FROM AUTHOR]

Published

2024

23. Research on Vehicle-ground Communication Monitoring Technology for Heavy Haul Railway Public and Private Networks.

Author

Cai Jun

Subjects

PRIVATE networks, TELECOMMUNICATION, COMPUTER network security, INTELLIGENT transportation systems, COMMUNICATION of technical information, RAILROADS

Abstract

With the application of public and private network technology in heavy haul freight vehicle-ground communication lines, monitoring the public and private networks of heavy haul railways has become an important technical means to ensure network security and stable operation. This paper briefly discusses the LTE public and private network architectures currently applied in heavy haul freight lines, and discusses the structure, functions, interfaces, and key technologies of the public and private network monitoring system. The research focuses on monitoring technology for the entire chain, including technology for the onboard side, the ground side, and even the center side, and ultimately provides prospects for the future promotion of heavy haul railway public and private network monitoring systems. [ABSTRACT FROM AUTHOR]

Published

2024

24. Network Monitoring Index in the Information Security Management System of Critical Information Infrastructure Objects

Author

Khudyntsev, Mykola, Lebid, Oleksii, Bychenok, Mykola, Zhylin, Artem, Davydiuk, Andrii, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Dovgyi, Stanislav, editor, Trofymchuk, Oleksandr, editor, Ustimenko, Vasyl, editor, and Globa, Larysa, editor

Published

2023

25. Characterization of the IPFS Public Network from DHT Requests

Author

Confais, Bastien, Parrein, Benoît, Lacan, Jérôme, Marques, François, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Hameurlain, Abdelkader, editor, and Tjoa, A Min, editor

Published

2023

26. Sniffit: A Packet Sniffing Tool Using Wireshark

Author

Rajawat, Sourit Singh, Khatri, Pallavi, Surange, Geetanjali, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Tomar, Ranjeet Singh, editor, Verma, Shekhar, editor, Chaurasia, Brijesh Kumar, editor, Singh, Vrijendra, editor, Abawajy, Jemal H., editor, Akashe, Shyam, editor, Hsiung, Pao-Ann, editor, and Prasad, Ramjee, editor

Published

2023

27. Intelligent Network Monitoring System Using an ISP Central Points of Presence

Author

Alkhanafseh, Yousef, Altın, Mahsun, Çakır, Altan, Karabıyık, Esra, Yıldız, Ekrem, Akyüz, Sencan, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Kahraman, Cengiz, editor, Sari, Irem Ucal, editor, Oztaysi, Basar, editor, Cebi, Selcuk, editor, Cevik Onar, Sezi, editor, and Tolga, A. Çağrı, editor

Published

2023

28. Application of the Platforms for IP Network Modeling to Characterize the Traffic in a VoIP Network

Author

Nedyalkov, Ivan, Howlett, Robert J., Series Editor, Jain, Lakhmi C., Series Editor, Bansal, Jagdish Chand, editor, Sharma, Harish, editor, and Chakravorty, Antorweep, editor

Published

2023

29. Advantages of Using IP Network Modeling Platforms in the Study of Power Electronic Devices

Author

Nedyalkov, Ivan, Georgiev, Georgi, Angrisani, Leopoldo, Series Editor, Arteaga, Marco, Series Editor, Panigrahi, Bijaya Ketan, Series Editor, Chakraborty, Samarjit, Series Editor, Chen, Jiming, Series Editor, Chen, Shanben, Series Editor, Chen, Tan Kay, Series Editor, Dillmann, Rüdiger, Series Editor, Duan, Haibin, Series Editor, Ferrari, Gianluigi, Series Editor, Ferre, Manuel, Series Editor, Hirche, Sandra, Series Editor, Jabbari, Faryar, Series Editor, Jia, Limin, Series Editor, Kacprzyk, Janusz, Series Editor, Khamis, Alaa, Series Editor, Kroeger, Torsten, Series Editor, Li, Yong, Series Editor, Liang, Qilian, Series Editor, Martín, Ferran, Series Editor, Ming, Tan Cher, Series Editor, Minker, Wolfgang, Series Editor, Misra, Pradeep, Series Editor, Möller, Sebastian, Series Editor, Mukhopadhyay, Subhas, Series Editor, Ning, Cun-Zheng, Series Editor, Nishida, Toyoaki, Series Editor, Oneto, Luca, Series Editor, Pascucci, Federica, Series Editor, Qin, Yong, Series Editor, Seng, Gan Woon, Series Editor, Speidel, Joachim, Series Editor, Veiga, Germano, Series Editor, Wu, Haitao, Series Editor, Zamboni, Walter, Series Editor, Zhang, Junjie James, Series Editor, Bindhu, V., editor, Tavares, João Manuel R. S., editor, and Vuppalapati, Chandrasekar, editor

Published

2023

30. Robust and Scalable Network Monitoring System Using Apache Spark

Author

Nair Melath, Rathinn, Rachabattuni, Srikar, Siddharth Cilamkoti, Sai, Ganesha Srinivas, D., Chadaram, Harshavardhana, Divya Udayan, J., Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Gunjan, Vinit Kumar, editor, and Zurada, Jacek M., editor

Published

2023

31. Network Monitoring of Cyber Physical System

Author

Srivastava, Mayank, Maurya, Aman, Sharma, Utkarsh, Srivastava, Shikha, Xhafa, Fatos, Series Editor, Hemanth, Jude, editor, Pelusi, Danilo, editor, and Chen, Joy Iong-Zong, editor

Published

2023

32. Research on Computer Network Security Protection Technology Incorporating Full Convolutional Networks

Author

Duan Xiqiang, Zhang Su, Feng Ling, and Zhang Lei

Subjects

full convolution, network security, protection techniques, network monitoring, intrusion detection, 68m01, Mathematics, QA1-939

Abstract

To strengthen networks’ security performance, here pose suggests a fused full convolutional approach to monitoring computer networks. This paper first analyzes the various performances of the full convolutional model for error problems rate, error reporting, and monitoring effects on various attack categories then proposes a network monitoring scheme for the full convolutional model and introduces the workflow of the full convolutional model in computer network security protection. In terms of accuracy, the full convolutional error rate of the blueprint meets the requirements rate of 96.8%, which is better than the classical network models of Lenet-5 and AlexNet, with 86.2% and 91.6%. The false alarm rate is only 2.37%, which is lower than the 5.74% MLP algorithm and 4.23% SVM algorithm. By comparison, the full convolutional calculation method is more efficient than other calculation methods in the detection rate of attack types such as Dos, Probe, U2R, and R2L. Therefore, the calculation method here is well adapted to computer network security protection requirements.

Published

2024

33. Optical network modelling-based data analytics for network monitoring and security analysis using hybrid computing models.

Author

Li, Fang, Xie, Yalou, and Han, Yong

Subjects

*COMPUTER network security, *RECURRENT neural networks, *COMPUTER network traffic, *TRAFFIC patterns, *DEEP learning, *ANOMALY detection (Computer security), *DATA integrity

Abstract

With the ever-increasing complexity and scale of optical networks, efficient network monitoring and robust security analysis have become paramount. In this study, we propose a novel approach that combines optical network modeling with data analytics, leveraging the power of hybrid computing models. Aim of this research is to propose novel technique in optical network modelling based on data analysis in network monitoring with security enhancement using hybrid computing model with deep learning techniques. Here the optical network monitoring and anomaly detection is carried out using fuzzy density clustering based markov K-means attention recurrent neural network (FDCM-KARNN). By continuously monitoring network performance and traffic patterns, our system can proactively detect and respond to network aberrations, minimizing downtime and mitigating potential risks. Then by hybrid computing based on edge and cloud network the vast amounts of network data and provide accurate predictions has been enabled. The experimental analysis is carried out for various monitored optical network dataset based on network security analysis and data analysis in terms of training accuracy, throughput, packet delivery ratio, data integrity, precision. The proposed technique attained training accuracy of 99%, precision of 98%, packet delivery ratio of 97%, data integrity of 85%, throughput of 96%. [ABSTRACT FROM AUTHOR]

Published

2023

34. In-band Network Telemetry에서 전송 오버헤드 감소를 위한 이벤트 기반 모니터링 기법.

Author

서형윤

Subjects

TELEMETRY

Abstract

In-band Network Telemetry (INT) is a framework that collects and reports network status and can be used in SDN dataplanes such as P4. On the INT, a network switch adds monitoring information for network monitoring in the packet header and transmits it. This behavior has a problem in that monitoring data transmission overhead occurs as the number of transmission hops and packets increases. To solve this problem, in this paper proposes an algorithm that reduces transmission overhead based on the start, change, end etc. events of a transport flow. In addition, the proposed algorithm can trace the data transmission path originally provided by INT even if the path changes of the flows. In the simulation, it can be confirmed that the monitoring transmission overhead is reduced, and it is possible to trace the data transmission path according to the proposed algorithm. [ABSTRACT FROM AUTHOR]

Published

2023

35. Detecting Malicious Devices in IPSEC Traffic with IPv4 Steganography

Author

Gabriel Jekateryńczuk, Damian Jankowski, René Veyland, and Zbigniew Piotrowski

Subjects

steganography, network security, data privacy, malicious traffic, network monitoring, Technology, Engineering (General). Civil engineering (General), TA1-2040, Biology (General), QH301-705.5, Physics, QC1-999, Chemistry, QD1-999

Abstract

This study investigates the application of steganography for enhancing network security by detecting and promptly eliminating malicious packets to prevent flooding and consequent denial of service attacks while also identifying malicious equipment. The paper discusses foundational concepts such as the prisoner’s dilemma, covert channels, qualitative metrics, and existing steganography techniques in computer communications. An architecture was developed to assess the effectiveness of this solution, and experiments were conducted, with their results presented. This contribution leverages established steganographic principles and seamlessly integrates with widely adopted IPsec protocols, offering a solution to improve covert communication within computer networks.

Published

2024

36. ROSIDS23: Network intrusion detection dataset for robot operating system

Author

Elif Değirmenci, Yunus Sabri Kırca, İlker Özçelik, and Ahmet Yazıcı

Subjects

ROS, Security, Network traffic, Intrusion detection system, Traffic classification, Network monitoring, Computer applications to medicine. Medical informatics, R858-859.7, Science (General), Q1-390

Abstract

The data described herein pertains to the Robotic Systems Security domain. This data in brief presents the attributes of the ROSIDS23 dataset and its collection process in detail. This dataset comprises Robot Operating System (ROS)-based cyber-attacks to address the emerging need in high fidelity data for robotic system security research. The data was gathered from the IFARLab-DIH environment. IFARLab-DIH is a robotic and factory-level laboratory that includes a ROS-based network and is used to conduct studies up to TRL 5 on robotic systems. ROSIDS23 dataset contains benign and various attack traffic collected from the ROS middleware using the tcpdump network protocol analyser. Then the eighty-two traffic features were extracted from the captured pcap files and converted into CSV format using the CICFlowMeter tool. This dataset can serve as a valuable resource for developing and improving security countermeasures in robotic systems and can help the evolution of resilient robotics infrastructure.

Published

2023

37. Security Performance of LoRaWAN Servers using Advanced Encryption Standard.

Author

Adi, Puput Dani Prasetyo

Subjects

ADVANCED Encryption Standard, DATA security, COMPUTER network security, DATA transmission systems

Abstract

One of the essential components in LoRaWAN is managing the server with all existing components, including Device Management, Data forwarding, Network security, and real-time network monitoring. It is necessary to manage the uplink and downlink of the LoRaWAN server and maintain the quality of data transmission from the LoRa end node to the LoRaWAN server. Depending on the service provider, the LoRaWAN Server provides space for payload, uplink, and downlink data. How many times in a day, week, month, or even year? This discussion depends on the LoRaWAN server provider. Some are open sources, and some provide free uplink and downlink services. Settings on the LoRaWAN Server will determine how much data will enter the server or the network size. Security is also an essential parameter, e.g., encryption or authentication, supported by the feature requirements used on the server, which will determine the type of communication that LoRa will apply, for example, multi-communication or analysis data. Centralized management, Security, scalability, and cost-effectiveness are essential parameters if LoRaWAN is managed well. [ABSTRACT FROM AUTHOR]

Published

2023

38. An Optimal Network-Aware Scheduling Technique for Distributed Deep Learning in Distributed HPC Platforms.

Author

Lee, Sangkwon, Raza Shah, Syed Asif, Seok, Woojin, Moon, Jeonghoon, Kim, Kihyeon, and Raza Shah, Syed Hasnain

Subjects

DEEP learning, OPTIMIZATION algorithms, ARTIFICIAL intelligence, SCHEDULING, PROBLEM solving

Abstract

Deep learning is a growing technique used to solve complex artificial intelligence (AI) problems. Large-scale deep learning has become a significant issue as a result of the expansion of datasets and the complexity of deep learning models. For training large-scale models, the cloud can be used as a distributed HPC (high-performance computing) tool with benefits in cost and flexibility. However, one of the major performance barriers in distributed deep learning in a distributed HPC environment is the network. The performance is often limited by heavy traffic like many stochastic gradient descent transfers for distributed communication. There are many network studies in distributed deep learning to solve these problems, but most research only focuses on improving communication performance and applying new methods or algorithms like overlapping parameter synchronization to minimize communication delay rather than considering the actual network. In this paper, we are focusing on the actual network, especially in a distributed HPC environment. In such an environment, if cluster nodes are assigned to different zones/regions which means a set of an appropriate number of distributed HPC nodes when performing distributed deep learning tasks, performance degradation due to network delay may occur. The proposed network optimization algorithm ensures that distributed work is placed in the same zone as much as possible to reduce network delay. Furthermore, scoring using network monitoring tools like loss, delay, and throughput is applied to select the optimal node within the zone. Our proposal has been validated on the Kubernetes platform, an open source orchestrator for the automatic management and deployment of micro-services. The performance of distributed deep learning is improved through the proposed scheduler. [ABSTRACT FROM AUTHOR]

Published

2023

39. Variable Length Motif Discovery in Time Series Data

Author

M. Van Onsem, V. Ledoux, W. Melange, D. Dreesen, and S. Van Hoecke

Subjects

Motif discovery, network monitoring, time series, matrix profile, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

The detection of recurring behavioral patterns in time series data, also called motif discovery, is a crucial step for mining insights in complex time series data, especially in complex environments where manual monitoring is not feasible. However, current state-of-the-art algorithms fall short in their applicability in production environments (due to static motif length, lots of user defined parameters, only providing the best motif pair, etc.). In this paper, a variable length motif discovery method is proposed based on the Matrix Profile which focuses on industrial applicability. It works in noisy and periodic environments, returns only unique motifs (meaning same shape motifs are grouped together as one) and only requires one distance matrix calculation. The method was benchmarked on synthetic data as well as publicly available real world key performance indicator (KPI) data from telecom providers and shows adequate accuracy in finding both short and long motifs in the same time series.

Published

2023

40. DNS Over HTTPS Detection Using Standard Flow Telemetry

Author

Kamil Jerabek, Karel Hynek, Ondrej Rysavy, and Ivana Burgetova

Subjects

DNS over HTTPS, DoH, machine learning, detection, classification, network monitoring, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

The aim of DNS over HTTPS (DoH) is to enhance users’ privacy by encrypting DNS. However, it also enables adversaries to bypass security mechanisms that rely on inspecting unencrypted DNS. Therefore in some networks, it is crucial to detect and block DoH to maintain security. Unfortunately, DoH is particularly challenging to detect, because it is designed to blend into regular HTTPS traffic. So far, there have been numerous proposals for DoH detection; however, they rely on specialized flow monitoring software that can export complex features that cannot be often computed on the running sequence or suffer from low accuracy. These properties significantly limit their mass deployment into real-world environments. Therefore this study proposes a novel DoH detector that uses IP-based, machine learning, and active probing techniques to detect DoH effectively with standard flow monitoring software. The use of classical flow features also enables its deployment in any network infrastructure with flow-monitoring appliances such as intelligent switches, firewalls, or routers. The proposed approach was tested using lab-created and real-world ISP-based network data and achieved a high classification accuracy of 0.999 and an F1 score of 0.998 with no false positives.

Published

2023

41. Statistical Learning for Change Point and Anomaly Detection in Graphs

Author

Malinovskaya, Anna, Otto, Philipp, Peters, Torben, Steland, Ansgar, editor, and Tsui, Kwok-Leung, editor

Published

2022

42. Network Scanning Topology Based on Inventory Using Query SNMP Method

Author

Handoko, Surya, Warnars, Harco Leslie Hendric Spits, Bansal, Jagdish Chand, Series Editor, Deep, Kusum, Series Editor, Nagar, Atulya K., Series Editor, Asokan, R., editor, Ruiz, Diego P., editor, Baig, Zubair A., editor, and Piramuthu, Selwyn, editor

Published

2022

43. Spatial Dependency in Software-Defined Networking In-Band Monitoring: Challenges and Future Perspective

Author

Jun Nan, Chin, Saw Chin, Tan, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Awan, Irfan, editor, Younas, Muhammad, editor, and Poniszewska-Marańda, Aneta, editor

Published

2022

44. Network Traffic Monitor for IDS in IoT

Author

Bolatti, Diego Angelo, Todt, Carolina, Scappini, Reinaldo, Gramajo, Sergio, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Rucci, Enzo, editor, Naiouf, Marcelo, editor, Chichizola, Franco, editor, De Giusti, Laura, editor, and De Giusti, Armando, editor

Published

2022

45. Application of Knowledge Mapping and Fault Diagnosis in Power Communication Network

Author

Zhang, Yi, Qi, Can, Zhao, Ye, Tong, Kunrui, Zhao, Zilan, Zhang, Lin, Angrisani, Leopoldo, Series Editor, Arteaga, Marco, Series Editor, Panigrahi, Bijaya Ketan, Series Editor, Chakraborty, Samarjit, Series Editor, Chen, Jiming, Series Editor, Chen, Shanben, Series Editor, Chen, Tan Kay, Series Editor, Dillmann, Rüdiger, Series Editor, Duan, Haibin, Series Editor, Ferrari, Gianluigi, Series Editor, Ferre, Manuel, Series Editor, Hirche, Sandra, Series Editor, Jabbari, Faryar, Series Editor, Jia, Limin, Series Editor, Kacprzyk, Janusz, Series Editor, Khamis, Alaa, Series Editor, Kroeger, Torsten, Series Editor, Li, Yong, Series Editor, Liang, Qilian, Series Editor, Martín, Ferran, Series Editor, Ming, Tan Cher, Series Editor, Minker, Wolfgang, Series Editor, Misra, Pradeep, Series Editor, Möller, Sebastian, Series Editor, Mukhopadhyay, Subhas, Series Editor, Ning, Cun-Zheng, Series Editor, Nishida, Toyoaki, Series Editor, Oneto, Luca, Series Editor, Pascucci, Federica, Series Editor, Qin, Yong, Series Editor, Seng, Gan Woon, Series Editor, Speidel, Joachim, Series Editor, Veiga, Germano, Series Editor, Wu, Haitao, Series Editor, Zamboni, Walter, Series Editor, Zhang, Junjie James, Series Editor, Yang, Qingxin, editor, Liang, Xidong, editor, Li, Yaohua, editor, and He, Jinghan, editor

Published

2022

46. Exploring Trust in SDN Along with Network Monitoring

Author

Sharma, Gaurav, Gawade, Sushopti, Angrisani, Leopoldo, Series Editor, Arteaga, Marco, Series Editor, Panigrahi, Bijaya Ketan, Series Editor, Chakraborty, Samarjit, Series Editor, Chen, Jiming, Series Editor, Chen, Shanben, Series Editor, Chen, Tan Kay, Series Editor, Dillmann, Rüdiger, Series Editor, Duan, Haibin, Series Editor, Ferrari, Gianluigi, Series Editor, Ferre, Manuel, Series Editor, Hirche, Sandra, Series Editor, Jabbari, Faryar, Series Editor, Jia, Limin, Series Editor, Kacprzyk, Janusz, Series Editor, Khamis, Alaa, Series Editor, Kroeger, Torsten, Series Editor, Li, Yong, Series Editor, Liang, Qilian, Series Editor, Martín, Ferran, Series Editor, Ming, Tan Cher, Series Editor, Minker, Wolfgang, Series Editor, Misra, Pradeep, Series Editor, Möller, Sebastian, Series Editor, Mukhopadhyay, Subhas, Series Editor, Ning, Cun-Zheng, Series Editor, Nishida, Toyoaki, Series Editor, Pascucci, Federica, Series Editor, Qin, Yong, Series Editor, Seng, Gan Woon, Series Editor, Speidel, Joachim, Series Editor, Veiga, Germano, Series Editor, Wu, Haitao, Series Editor, Zamboni, Walter, Series Editor, Zhang, Junjie James, Series Editor, Singh, Pradeep Kumar, editor, Singh, Yashwant, editor, Chhabra, Jitender Kumar, editor, Illés, Zoltán, editor, and Verma, Chaman, editor

Published

2022

47. Anomaly Detection Method for a Local Area Network

Author

Párraga-Palmar, Ángel Ramón, Cruz-Felipe, Marely del Rosario, Párraga-Valle, José, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Botto-Tobar, Miguel, editor, Cruz, Henry, editor, Díaz Cadena, Angela, editor, and Durakovic, Benjamin, editor

Published

2022

48. InfiniBand Network Monitoring: Challenges and Possibilities

Author

Hintze, Kyle, Graham, Scott, Dunlap, Stephen, Sweeney, Patrick, Rannenberg, Kai, Editor-in-Chief, Soares Barbosa, Luís, Editorial Board Member, Goedicke, Michael, Editorial Board Member, Tatnall, Arthur, Editorial Board Member, Neuhold, Erich J., Editorial Board Member, Stiller, Burkhard, Editorial Board Member, Tröltzsch, Fredi, Editorial Board Member, Pries-Heje, Jan, Editorial Board Member, Kreps, David, Editorial Board Member, Reis, Ricardo, Editorial Board Member, Furnell, Steven, Editorial Board Member, Mercier-Laurent, Eunika, Editorial Board Member, Winckler, Marco, Editorial Board Member, Malaka, Rainer, Editorial Board Member, Staggs, Jason, editor, and Shenoi, Sujeet, editor

Published

2022

49. On the Existing and New Potential Methods for Partial Discharge Source Monitoring in Electrical Power Grids

Author

Stanescu, Denis, Digulescu, Angela, Ioana, Cornel, Serbanescu, Alexandru, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Zhang, Yu-Dong, editor, Senjyu, Tomonobu, editor, So-In, Chakchai, editor, and Joshi, Amit, editor

Published

2022

50. Submodularity of optimal sensor placement for traffic networks.

Author

Li, Ruolin, Mehr, Negar, and Horowitz, Roberto

Subjects

*SENSOR placement, *VEHICLE detectors, *OPTIMIZATION algorithms, *GREEDY algorithms, *VEHICLE routing problem, *COMBINATORIAL optimization, *SUBSET selection

Abstract

The need for monitoring the state of a traffic network versus the costly installation and maintenance of roadside sensors constitutes the tough sensor placement problem in designing transportation networks. Placement problems naturally lie in the category of subset selection problems, which are known to be inherently combinatorial, and therefore, finding their exact solution is intractable for large problems. Due to this intractability, numerous heuristics have been proposed in the literature for approximately solving placement problems for traffic networks. Among these approaches, it has been observed that greedy algorithms normally outperform other heuristics. In this paper, we show the mathematics of why greedy algorithms are appropriate proxies for solving these subset selection problems; similar to placement problems for linear systems, placement problems for traffic networks also normally have a submodular structure. In this work, we analyze the problem of road sensor placement for transportation networks under different information structures available: when no vehicle routing information is available, when vehicles' routings are known, and when it is necessary to maximize the number of origin–destination (O/D) traffic flows that are monitored with a set of sensors. We show that in all these cases, the placement problem has a submodular monotone structure. It is well known that the submodularity and monotonicity of discrete optimization problems can be leveraged to derive greedy algorithms that approximate the optimal solution. Consequently, our result is of great practical importance since by exploiting the submodularity and monotonicity of a problem, we show that it is possible to use polynomial-time greedy algorithms to approximate the combinatorial optimization problem with guaranteed optimality bounds for large problems, which are intractable to solve otherwise. Our results shed light upon the success of heuristic greedy algorithms that have been developed in some of the literature for solving placement problems at scale. To demonstrate the applicability of submodular optimization for solving placement problems, we first compare the performance of our polynomial-time approximation algorithm with the true optimum in an example traffic network which is small enough for finding the exact optimal solution with enumerating all possible subsets. Then, we investigate and validate our submodular approach in a case study involving a large-scale traffic network in Berkeley, California, where finding the exact optimal solution is intractable. Submodularity of the placement problem in these scenarios provides a powerful computational tool which can be further extended to other placement problem formulations that can become a reference for solving similar problems in the transportation literature. • Sensor placement problems on large scale networks are intractable. • Three different sensor placement problems are shown to share the submodular feature. • Submodular optimization problems have efficient solutions. • The submodular optimization algorithm is validated on both small and large networks. [ABSTRACT FROM AUTHOR]

Published

2023