Deployment of Real-Time Network Traffic Analysis using GraphBLAS   Hypersparse Matrices and D4M Associative Arrays

Michael Jones; Jeremy Kepner; Andrew Prout; Timothy Davis; William; Arcand; David Bestor; William Bergeron; Chansup Byun; Vijay Gadepally,; Micheal Houle; Matthew Hubbell; Hayden Jananthan; Anna Klein; Lauren; Milechin; Guillermo Morales; Julie Mullen; Ritesh Patel; Sandeep Pisharody,; Albert Reuther; Antonio Rosa; Siddharth Samsi; Charles Yee; Peter Michaleas

arXiv:2309.02464·cs.NI·December 29, 2023

Deployment of Real-Time Network Traffic Analysis using GraphBLAS Hypersparse Matrices and D4M Associative Arrays

Michael Jones, Jeremy Kepner, Andrew Prout, Timothy Davis, William, Arcand, David Bestor, William Bergeron, Chansup Byun, Vijay Gadepally,, Micheal Houle, Matthew Hubbell, Hayden Jananthan, Anna Klein, Lauren, Milechin, Guillermo Morales, Julie Mullen, Ritesh Patel

PDF

Open Access

TL;DR

This paper demonstrates the practical deployment of GraphBLAS hypersparse matrices and D4M associative arrays for real-time network traffic analysis, highlighting their effectiveness in operational systems with modest resources.

Contribution

It presents two real-time operational implementations of GraphBLAS and D4M for network traffic analysis, showcasing their integration and performance in practical settings.

Findings

01

GraphBLAS effectively analyzes high-bandwidth network data with low resource use.

02

D4M efficiently processes unstructured cloud logs in real-time.

03

Both technologies meet operational requirements with modest computational resources.

Abstract

Matrix/array analysis of networks can provide significant insight into their behavior and aid in their operation and protection. Prior work has demonstrated the analytic, performance, and compression capabilities of GraphBLAS (graphblas.org) hypersparse matrices and D4M (d4m.mit.edu) associative arrays (a mathematical superset of matrices). Obtaining the benefits of these capabilities requires integrating them into operational systems, which comes with its own unique challenges. This paper describes two examples of real-time operational implementations. First, is an operational GraphBLAS implementation that constructs anonymized hypersparse matrices on a high-bandwidth network tap. Second, is an operational D4M implementation that analyzes daily cloud gateway logs. The architectures of these implementations are presented. Detailed measurements of the resources and the performance are…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsComplex Network Analysis Techniques · Network Traffic and Congestion Control · Advanced Optical Network Technologies