An Analysis of Temporal Features in Multivariate Time Series to Forecast Network Events

Authors

• Soo Yeon Ji, Bowie State University
• Bong Keun Jeong, Coastal Carolina University
• Dong H. Jeong, School of Engineering & Applied Sciences

Document Type

Article

Publication Date

9-1-2023

Abstract

Analyzing network traffic over time is crucial for understanding the changes in network activity. To properly examine network traffic patterns over time, multiple network events in each timestamp need to be converted to time series data. In this study, we propose a new approach to transform network traffic data into time series formats by extracting temporal features to analyze normal/attack patterns. The normal patterns indicate network traffic occurred without any intrusion-related activities, whereas the attack patterns denote potential threats that deviate from the normal patterns. To evaluate the features, long short-term memory (LSTM) is applied to forecast multi-step network normal and attack events. Visual analysis is also performed to enhance the understanding of key features in the network. We compared the performance differences using time scales of 60 and 120 s. Upon evaluation, we found that the temporal features extracted with the 60 s time scale exhibited better performance in forecasting future network events.

Comments

MDPI originally published this article.

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

Recommended Citation

Ji, S.-Y., Jeong, B. K., & Jeong, D. H. (2023). An Analysis of Temporal Features in Multivariate Time Series to Forecast Network Events. Applied Sciences, 13(18), 10411. https://doi.org/10.3390/app131810411. Available at https://digitalcommons.coastal.edu/management/