Research Article Open Access

Scorpius: sFlow Network Anomaly Simulator

Marcos V.O. de Assis1 and Mario Lemes Proença Jr.2
  • 1 Federal University of Paraná, Brazil
  • 2 State University of Londrina, Brazil

Abstract

Due to the increasing amount of data traveling computer networks every day, efficient management of this information is required to ensure the quality of the services provided by them. Development of new network management tools and mechanisms is a widely approached area due to its importance, not only to the current technology, but also to next generation network standards and equipments. Several researches have been directed to the use of IP Flows in order to increase the efficiency of these management tools. Although there are several proposed approaches in this area, most of them don't have suitable test scenarios to validate their performance results. In this study, we present Scorpius, a new simulation tool able to help testing network management mechanisms based on IP Flows. Scorpius is capable of simulating different kinds of anomalies, such as Denial of Service (DoS), Distributed Denial of Service (DDoS), Flash Crowd and Port Scan, directly into the flow export files. This characteristic unites the advantages of tests in real network environments without the drawbacks of the occurrence of real anomalies and attacks, even controlled ones. This approach makes the processes of performance analysis of anomaly detection approaches easier, without interfering or hampering the operation of the analyzed network. In order to validate the efficiency of the presented tool, we use real data collected from a large-scale network environment.

Journal of Computer Science
Volume 11 No. 4, 2015, 662-674

DOI: https://doi.org/10.3844/jcssp.2015.662.674

Submitted On: 7 January 2015 Published On: 23 July 2015

How to Cite: de Assis, M. V. & Proença Jr., M. L. (2015). Scorpius: sFlow Network Anomaly Simulator. Journal of Computer Science, 11(4), 662-674. https://doi.org/10.3844/jcssp.2015.662.674

  • 3,643 Views
  • 2,382 Downloads
  • 6 Citations

Download

Keywords

  • Scorpius
  • Flows
  • Anomaly
  • Simulation
  • Network Management