Finding Network Anomalies with Advanced Statistics

Presented at ToorCamp 2014, July 10, 2014, 4 p.m. (20 minutes)

Have you ever tried analyzing your network data using mean & standard deviation? Have you ever noticed how much it sucks? Or how inaccurate it can be? Or how hard it can be to use? This presentation explores the idea of statistical anomaly detection and brings it to the next level. Multiple statistical methods of analyzing network traffic will be presented, showing how they perform in a realistic environment. The goal of this talk is to get people thinking about new ways of analyzing network data, and get us out of the stone age of standard deviation.

Presenters:

  • m33p
    m33p is a recent graduate from Seattle Pacific University with a degree in applied mathematics, and a veteran in Infosec. Her goal is to apply the concepts of advanced applied mathematics to usher in a new era of security monitoring.

Similar Presentations: