@inbook{a2e873a05554422188e9ae3b3e583618,
title = "Visual-based anomaly detection for BGP origin AS change (OASC) events",
abstract = "To complement machine intelligence in anomaly event analysis and correlation, in this paper, we investigate the possibility of a human-interactive visual-based anomaly detection system for faults and security attacks related to the BGP (Border Gateway Protocol) routing protocol. In particular, we have built and tested a program, based on fairly simple information visualization techniques, to navigate interactively real-life BGP OASC (Origin AS Change) events. Our initial experience demonstrates that the integration of mechanical analysis and human intelligence can effectively improve the performance of anomaly detection and alert correlation. Furthermore, while a traditional representation of OASC events provides either little or no valuable information, our program can accurately identify, correlate previously unknown BGP/OASC problems, and provide network operators with a valuable high-level abstraction about the dynamics of BGP.",
author = "Teoh, \{Soon Tee\} and Ma, \{Kwan Liu\} and Wu, \{S. Felix\} and Dan Massey and Zhao, \{Xiao Liang\} and Dan Pei and Lan Wang and Lixia Zhang and Randy Bush",
year = "2003",
doi = "10.1007/978-3-540-39671-0\_14",
language = "English",
isbn = "3540203141",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "155--168",
editor = "Marcus Brunner and Alexander Keller",
booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
address = "Germany",
}