network behavior anomaly detection (NBAD)

Network Behavior Analysis(NBA) or Network Behavior Anomaly Detection (NBAD) is a process in which the system detects deviations in the traffic pattern of a network and can temporarily interrupt the data transfer.

In NBAD detection, the deviations in traffic profiles are recorded and are used by the administrator for preventive fault detection and to increase the security standard. NBAD systems can be equipped with automated recovery mechanisms that are automatically activated when deviations occur. NBAD systems target network configuration with traffic flow management and policy modeling. They work as analysis tools, analyzing traffic flow, network behavior and data packets and generating reports on error messages, alarms and trends.

In terms of procedure, NBAD systems capture the traffic flow of a network at several points and create a traffic profile from this actual state. This learning phase forms the basis for subsequent anomaly detection, matching the actual state in real time with predetermined behavioral conditions.

Behavior-based security software includes Network Behavior Anomaly Detection (NBAD), behavior-based intrusion detection, Behavior Threat Analysis( BTA) and User Behavior Analytics( UBA).