Łukasz Saganowski scite author profile

Łukasz Saganowski

4Publications

42Citation Statements Received

77Citation Statements Given

How they've been cited

How they cite others

Affiliations

Bydgoszcz University of Science and Technology, AGH University of Krakow, Instytut Technik Telekomunikacyjnych i Informatycznych (Poland)

Publications

Order By: Most citations

Statistical and signal‐based network traffic recognition for anomaly detection

Choraś¹,

Saganowski²,

Renk

et al. 2011

Expert Systems

View full text Add to dashboard Cite

In this paper, a framework for recognizing network traffic in order to detect anomalies is proposed.We propose to combine and correlate parameters from different layers in order to detect 0-day attacks and reduce false positives. Moreover, we propose to combine statistical and signal-based features. The major contribution of this paper is novel framework for network security based on the correlation approach as well as new signal-based algorithm for intrusion detection on the basis of the Matching Pursuit (MP) algorithm. As to our best knowledge, we are the first to use MP for intrusion and anomaly detection in computer networks. In the presented experiments, we proved that our solution gives better results than intrusion detection based on discrete wavelet transform.

show abstract

Anomaly Detection in Smart Metering Infrastructure with the Use of Time Series Analysis

2017

View full text Add to dashboard Cite

The article presents solutions to anomaly detection in network traffic for critical smart metering infrastructure, realized with the use of radio sensory network. The structure of the examined smart meter network and the key security aspects which have influence on the correct performance of an advanced metering infrastructure (possibility of passive and active cyberattacks) are described. An effective and quick anomaly detection method is proposed. At its initial stage, Cook's distance was used for detection and elimination of outlier observations. So prepared data was used to estimate standard statistical models based on exponential smoothing, that is, Brown's, Holt's, and Winters' models. To estimate possible fluctuations in forecasts of the implemented models, properly parameterized Bollinger Bands was used. Next, statistical relations between the estimated traffic model and its real variability were examined to detect abnormal behavior, which could indicate a cyberattack attempt. An update procedure of standard models in case there were significant real network traffic fluctuations was also proposed. The choice of optimal parameter values of statistical models was realized as forecast error minimization. The results confirmed efficiency of the presented method and accuracy of choice of the proper statistical model for the analyzed time series.

show abstract

DDoS Attacks Detection by Means of Statistical Models

Andrysiak

Saganowski

2016

View full text Add to dashboard Cite

Detection of Network Attacks Using Hybrid ARIMA-GARCH Model

Andrysiak¹,

Saganowski²,

Maszewski³

et al. 2017

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.