A Selectivity based approach to Continuous Pattern Detection in Streaming Graphs

Choudhury, Sutanay; Holder, Larry; Chin, George; Agarwal, Khushbu; Feo, John T.

doi:10.5441/002/edbt.2015.15

Title: A Selectivity based approach to Continuous Pattern Detection in Streaming Graphs

Conference · Mon Feb 02 00:00:00 EST 2015

DOI:https://doi.org/10.5441/002/edbt.2015.15· OSTI ID:1183625

Choudhury, Sutanay; Holder, Larry; Chin, George; Agarwal, Khushbu; Feo, John T.

Cyber security is one of the most significant technical challenges in current times. Detecting adversarial activities, prevention of theft of intellectual properties and customer data is a high priority for corporations and government agencies around the world. Cyber defenders need to analyze massive-scale, high-resolution network flows to identify, categorize, and mitigate attacks involving net- works spanning institutional and national boundaries. Many of the cyber attacks can be described as subgraph patterns, with promi- nent examples being insider infiltrations (path queries), denial of service (parallel paths) and malicious spreads (tree queries). This motivates us to explore subgraph matching on streaming graphs in a continuous setting. The novelty of our work lies in using the subgraph distributional statistics collected from the streaming graph to determine the query processing strategy. We introduce a “Lazy Search" algorithm where the search strategy is decided on a vertex-to-vertex basis depending on the likelihood of a match in the vertex neighborhood. We also propose a metric named “Relative Selectivity" that is used to se- lect between different query processing strategies. Our experiments performed on real online news, network traffic stream and a syn- thetic social network benchmark demonstrate 10-100x speedups over selectivity agnostic approaches.

OSTI does not have a digital full text copy available. For more information, please see document availability, search WorldCat, or search Google Scholar.

Cite

Export

Save

Research Organization:: Pacific Northwest National Lab. (PNNL), Richland, WA (United States)

Sponsoring Organization:: USDOE

DOE Contract Number:: AC05-76RL01830

OSTI ID:: 1183625

Report Number(s):: PNNL-SA-107908; 400470000

Resource Relation:: Conference: Proceedings of the 18th International Conference on Extending Database Technology (EDBT), March 23-27, 2015, Brussels, Belgium, 157-168

Country of Publication:: United States

Language:: English

Similar Records

A Selectivity based approach to Continuous Pattern Detection in Streaming Graphs

Conference · Wed May 27 00:00:00 EDT 2015 · OSTI ID:1183625

Choudhury, Sutanay; Holder, Larry; Chin, George; +2 more

Predicting and Detecting Emerging Cyberattack Patterns Using StreamWorks

Conference · Mon Jun 30 00:00:00 EDT 2014 · OSTI ID:1183625

Chin, George; Choudhury, Sutanay; Feo, John T.; +1 more

Finite Energy and Bounded Actuator Attacks on Cyber-Physical Systems

Conference · Thu Jan 01 00:00:00 EST 2015 · OSTI ID:1183625

Djouadi, Seddik M; Melin, Alexander M; Ferragut, Erik M; +3 more

Related Subjects

graphs
cybersecurity

Title: A Selectivity based approach to Continuous Pattern Detection in Streaming Graphs

Citation Formats

Similar Records

Related Subjects