翻訳と辞書 Words near each other ・ Network of Conservation Educators and Practitioners ・ Network analyzer (AC power) ・ Network analyzer (electrical) ・ Network and Management Laboratory ・ Network Applied Communication Laboratory ・ Network arch bridge ・ Network architecture ・ Network as a service ・ Network Audio System ・ Network Automation ・ Network Automation, Inc. v. Advanced Systems Concepts, Inc. ・ Network automaton ・ Network Aviation ・ Network Awesome ・ Network Based Application Recognition ・ Network Behavior Anomaly Detection ・ Network block device ・ Network Bootable Image ・ Network booting ・ Network Browser ・ Network browser ・ Network calculus ・ Network Caller ID ・ Network Centric Airborne Defense Element ・ Network Centric Operations Industry Consortium ・ Network Centric Product Support ・ Network change ・ Network Charter School ・ Network Chemistry ・ Network cloaking Dictionary Lists mini英和辞書 mini和英辞書 Webster 1913 Latin-English FOLDOC Wikipedia English ウィキペディア

翻訳と辞書　辞書検索 [ 開発暫定版 ] スポンサード リンク Network Behavior Anomaly Detection ： ウィキペディア英語版 Network Behavior Anomaly Detection ==Network Behavior Anomaly Detection (NBAD)== Network behavior anomaly detection (NBAD) provides one approach to network security threat detection. It is a complementary technology to systems that detect security threats based on packet signatures. NBAD is the continuous monitoring of a network for unusual events or trends. NBAD is an integral part of network behavior analysis (NBA), which offers security in addition to that provided by traditional anti-threat applications such as firewalls, intrusion detection systems,〔http://iac.dtic.mil/csiac/download/intrusion_detection.pdf〕 antivirus software and spyware-detection software. Most security monitoring systems utilize a signature-based approach to detect threats. They generally monitor packets on the network and look for patterns in the packets which match their database of signatures representing pre-identified known security threats. NBAD-based systems are particularly helpful in detecting security threat vectors in 2 instances where signature-based systems cannot (i) new zero-day attacks (ii) when the threat traffic is encrypted such as the command and control channel for certain Botnets. An NBAD program tracks critical network characteristics in real time and generates an alarm if a strange event or trend is detected that could indicate the presence of a threat. Large-scale examples of such characteristics include traffic volume, bandwidth use and protocol use.〔http://www.networkcomputing.com/data-protection/rolling-review-kickoff-network-behavior/229603646〕 NBAD solutions can also monitor the behavior of individual network subscribers. In order for NBAD to be optimally effective, a baseline of normal network or user behavior must be established over a period of time. Once certain parameters have been defined as normal, any departure from one or more of them is flagged as anomalous. NBAD should be used in addition to conventional firewalls and applications for the detection of malware. Some vendors have begun to recognize this fact by including NBA/NBAD programs as integral parts of their network security packages. NBAD technology/techniques are applied in a number of network and security monitoring domains including: (i) Log analysis (ii) Packet inspection systems (iii) Flow monitoring systems and (iv) Route analytics. 抄文引用元・出典: フリー百科事典『 ウィキペディア（Wikipedia）』 ■ウィキペディアで「Network Behavior Anomaly Detection」の詳細全文を読む スポンサード リンク 翻訳と辞書 : 翻訳のためのインターネットリソース Copyright(C) kotoba.ne.jp 1997-2016. All Rights Reserved.