Accession Number:

ADA532059

Title:

An Entropy-based Approach to Detecting Anomalies in Voice over Internet Protocol (VoIP) Traffic

Descriptive Note:

Final rept. 19 May-29 Dec 2009

Corporate Author:

ARMY RESEARCH LAB ABERDEEN PROVING GROUND MD COMPUTATIONAL AND INFORMATION SCIENCES DIR

Personal Author(s):

Report Date:

2010-03-01

Pagination or Media Count:

18.0

Abstract:

Computer intrusion is a growing concern and field of investigation among government and private agencies. The main issue with most of the current Intrusion Detection Systems IDSs is that they are based on signature based observations, which means this class of detection system will only alert on attacks that the system is programmed to see. Entropy can be applied in various ways to examine data, but it is not a standalone IDS. It offers a theoretical, yet practical approach for the detection of abnormal patterns of behavior.

Subject Categories:

  • Voice Communications

Distribution Statement:

APPROVED FOR PUBLIC RELEASE