A Selectivity based approach to Continuous Pattern Detection in Streaming Graphs

Choudhury, Sutanay; Holder, Larry; Chin, George; Agarwal, Khushbu; Feo, John T.

Title: A Selectivity based approach to Continuous Pattern Detection in Streaming Graphs

Conference · Wed May 27 00:00:00 EDT 2015

OSTI ID:1339917

Choudhury, Sutanay; Holder, Larry; Chin, George; Agarwal, Khushbu; Feo, John T.

Cyber security is one of the most significant technical challenges in current times. Detecting adversarial activities, prevention of theft of intellectual properties and customer data is a high priority for corporations and government agencies around the world. Cyber defenders need to analyze massive-scale, high-resolution network flows to identify, categorize, and mitigate attacks involving networks spanning institutional and national boundaries. Many of the cyber attacks can be described as subgraph patterns, with prominent examples being insider infiltrations (path queries), denial of service (parallel paths) and malicious spreads (tree queries). This motivates us to explore subgraph matching on streaming graphs in a continuous setting. The novelty of our work lies in using the subgraph distributional statistics collected from the streaming graph to determine the query processing strategy. We introduce a ``Lazy Search" algorithm where the search strategy is decided on a vertex-to-vertex basis depending on the likelihood of a match in the vertex neighborhood. We also propose a metric named ``Relative Selectivity" that is used to select between different query processing strategies. Our experiments performed on real online news, network traffic stream and a synthetic social network benchmark demonstrate 10-100x speedups over non-incremental, selectivity agnostic approaches.

OSTI does not have a digital full text copy available. For more information, please see document availability, search WorldCat, or search Google Scholar.

Cite

Export

Save

Research Organization:: Pacific Northwest National Lab. (PNNL), Richland, WA (United States)

Sponsoring Organization:: USDOE

DOE Contract Number:: AC05-76RL01830

OSTI ID:: 1339917

Report Number(s):: PNNL-SA-105645; 400470000

Resource Relation:: Conference: Proceedings of the 18th International Conference on Extending Database Technology (EDBT 2015), March 23-27, 2015, Brussels, Belgium, 157-168

Country of Publication:: United States

Language:: English

Similar Records

A Selectivity based approach to Continuous Pattern Detection in Streaming Graphs

Conference · Mon Feb 02 00:00:00 EST 2015 · OSTI ID:1339917

Choudhury, Sutanay; Holder, Larry; Chin, George; +2 more

Inferring adversarial behaviour in cyber‐physical power systems using a Bayesian attack graph approach

Journal Article · Sat Feb 11 00:00:00 EST 2023 · IET Cyber-Physical Systems: Theory & Applications · OSTI ID:1339917

Sahu, Abhijeet; Davis, Katherine

A Graph-Based Impact Metric for Mitigating Lateral Movement Cyber Attacks

Conference · Fri Nov 04 00:00:00 EDT 2016 · OSTI ID:1339917

Purvine, Emilie AH; Johnson, John R.; Lo, Chaomei

Related Subjects

streaming graphs
dynamic graphs
graph search
query optimization

Title: A Selectivity based approach to Continuous Pattern Detection in Streaming Graphs

Citation Formats

Similar Records

Related Subjects