MIND - Multidimensional Indices for Network Diagnosis
Overview
Detecting coordinated attacks on Internet resources requires a distributed network monitoring infrastructure. Such an infrastructure will have two logically distinct elements: distributed monitors that continuously collect traffic information, and a distributed query system that allows network operators to efficiently correlate information from different monitors in order to detect anomalous traffic patterns.
In this project, we explore the design and implementation of MIND, a distributed index management system that supports the creation and querying of multiple distributed indices. We validate MIND using traffic traces from two large backbone networks, then examine the performance of a MIND prototype on more than 100 PlanetLab machines. Our experiments show that MIND can detect and report network anomalies in about one second on an inter-continental backbone.
Papers
- Xin Li, Fang Bian, Hui Zhang, Christophe Diot, Ramesh Govindan, Wei Hong, and Gianluca Iannaccone. Advanced Indexing Techniques for Wide-Area Network Monitoring. In 1st IEEE International Workshop on Networking Meets Databases (NetDB). Tokyo, Japan. 8 April 2005.
- Xin Li, Fang Bian, Hui Zhang, Christophe Diot, Ramesh Govindan, Wei Hong, and Gianluca Iannaccone. Advanced Indexing Techniques for Wide-Area Network Monitoring. Technical Report USC-CS-05-847. 2005.
- Xin Li, Fang Bian, Hui Zhang, Christophe Diot, Ramesh Govindan, Wei Hong, and Gianluca Iannaccone. MIND: A Distributed Multi-dimensional Indexing System for Network Diagnosis. To appear in IEEE INFOCOM 2006. Barcelona, Spain. 23-29 April, 2006.
Talks
- Gianluca Iannaccone. Advanced Indexing Technique for Wide Area Network Monitoring In 1st IEEE International Workshop on Networking Meets Databases (NetDB). Tokyo, Japan. 8 April 2005.
- Xin Li. MIND: A Distributed Multi-dimensional Indexing System for Network Diagnosis In Intel Security Workshop. Hillsboro, OR. 17 November 2005.
Software
- Please send request to the contact below.
Contact
Please email to
Last Modified: 1 March 2005