Adaptive Aggregation of Flow Records

Authors

  • Adrián Pekár Institute of Computer Technology, Technical University of Košice
  • Martin Chovanec Institute of Computer Technology, Technical University of Košice
  • Liberios Vokorokos Department of Computers and Informatics Faculty of Electrical Engineering and Informatics, Technical University of Košice
  • Eva Chovancová Department of Computers and Informatics Faculty of Electrical Engineering and Informatics, Technical University of Košice
  • Peter Feciľak Department of Computers and Informatics Faculty of Electrical Engineering and Informatics, Technical University of Košice
  • Miroslav Michalko Department of Computers and Informatics Faculty of Electrical Engineering and Informatics, Technical University of Košice

Keywords:

Network traffic monitoring, IPFIX, exporter, flow record, data reduction, adaptive aggregation, heavy-hitter, resource utilization

Abstract

This paper explores the problem of processing the immense volume of measurement data arising during network traffic monitoring. Due to the ever-increasing demands of current networks, observing accurate information about every single flow is virtually infeasible. In many cases the existing methods for the reduction of flow records are still not sufficient enough. Since the accurate knowledge of flows termed as "heavy-hitters" suffices to fulfill most of the monitoring purposes, we decided to aggregate the flow records pertaining to non-heavy-hitters. However, due to the ever-changing nature of traffic, their identification is a challenge. To overcome this challenge, our proposed approach - the adaptive aggregation of flow records - automatically adjusts its operation to the actual traffic load and to the monitoring requirements. Preliminary experiments in existing network topologies showed that adaptive aggregation efficiently reduces the number of flow records, while a significant proportion of traffic details is preserved.

Downloads

Download data is not yet available.

Author Biographies

Adrián Pekár, Institute of Computer Technology, Technical University of Košice

Network and System Engineer, Researcher

Martin Chovanec, Institute of Computer Technology, Technical University of Košice

Head of the Institute of Computer Technology, TUKE

Liberios Vokorokos, Department of Computers and Informatics Faculty of Electrical Engineering and Informatics, Technical University of Košice

Dean of the Faculty of Electrical Engineering and Informatics, TUKE

Eva Chovancová, Department of Computers and Informatics Faculty of Electrical Engineering and Informatics, Technical University of Košice

Department of Computers and Informatics, TUKE, Assistant Professor

Peter Feciľak, Department of Computers and Informatics Faculty of Electrical Engineering and Informatics, Technical University of Košice

Department of Computers and Informatics, TUKE, Assistant Professor

Miroslav Michalko, Department of Computers and Informatics Faculty of Electrical Engineering and Informatics, Technical University of Košice

Department of Computers and Informatics, TUKE, Assistant Professor

Downloads

Published

2018-05-03

How to Cite

Pekár, A., Chovanec, M., Vokorokos, L., Chovancová, E., Feciľak, P., & Michalko, M. (2018). Adaptive Aggregation of Flow Records. COMPUTING AND INFORMATICS, 37(1), 142–164. Retrieved from https://www.cai.sk/ojs/index.php/cai/article/view/2018_1_142

Issue

Vol. 37 No. 1 (2018): Computing and Informatics

Section

Articles

Most read articles by the same author(s)