Newer
Older
Luis de la Cal
committed
60001
60002
60003
60004
60005
60006
60007
60008
60009
60010
60011
60012
60013
60014
60015
60016
60017
60018
60019
60020
60021
60022
60023
60024
60025
60026
60027
60028
60029
60030
60031
60032
60033
60034
60035
60036
60037
60038
60039
60040
60041
60042
60043
60044
60045
60046
60047
60048
60049
60050
60051
60052
60053
60054
60055
60056
60057
60058
60059
60060
60061
60062
60063
60064
60065
60066
60067
60068
60069
60070
60071
60072
60073
60074
60075
60076
60077
60078
60079
60080
60081
60082
60083
60084
60085
60086
60087
60088
60089
60090
60091
60092
60093
60094
60095
60096
60097
60098
60099
60100
60101
60102
60103
60104
60105
60106
60107
60108
60109
60110
60111
60112
60113
60114
60115
60116
60117
60118
60119
60120
60121
60122
60123
60124
60125
60126
60127
60128
60129
60130
60131
60132
60133
60134
60135
60136
60137
60138
60139
60140
60141
60142
60143
60144
60145
60146
60147
60148
60149
60150
60151
60152
60153
60154
60155
60156
60157
60158
60159
60160
60161
60162
60163
60164
60165
60166
60167
60168
60169
60170
60171
60172
60173
60174
60175
60176
60177
60178
60179
60180
60181
60182
60183
60184
60185
60186
60187
60188
60189
60190
60191
60192
60193
60194
60195
60196
60197
60198
60199
60200
60201
60202
60203
60204
60205
60206
60207
60208
60209
60210
60211
60212
60213
60214
60215
60216
60217
60218
60219
60220
60221
60222
60223
60224
60225
60226
60227
60228
60229
60230
60231
60232
60233
60234
60235
60236
60237
60238
60239
60240
60241
60242
60243
60244
60245
60246
60247
60248
60249
60250
60251
60252
60253
60254
60255
60256
60257
60258
60259
60260
60261
60262
60263
60264
60265
60266
60267
60268
60269
60270
60271
60272
60273
60274
60275
60276
60277
60278
60279
60280
60281
60282
60283
60284
60285
60286
60287
60288
60289
60290
60291
60292
60293
60294
60295
60296
60297
60298
60299
60300
60301
60302
60303
60304
60305
60306
60307
60308
60309
60310
60311
60312
60313
60314
60315
60316
60317
60318
60319
60320
60321
60322
60323
60324
60325
60326
60327
60328
60329
60330
60331
60332
60333
60334
60335
60336
60337
60338
60339
60340
60341
60342
60343
60344
60345
60346
60347
60348
60349
60350
60351
60352
60353
60354
60355
60356
60357
60358
60359
60360
60361
60362
60363
60364
60365
60366
60367
60368
60369
60370
60371
60372
60373
60374
60375
60376
60377
60378
60379
60380
60381
60382
60383
60384
60385
60386
60387
60388
60389
60390
60391
60392
60393
60394
60395
60396
60397
60398
60399
60400
60401
60402
60403
60404
60405
60406
60407
60408
60409
60410
60411
60412
60413
60414
60415
60416
60417
60418
60419
60420
60421
60422
60423
60424
60425
60426
60427
60428
60429
60430
60431
60432
60433
60434
60435
60436
60437
60438
60439
60440
60441
60442
60443
60444
60445
60446
60447
60448
60449
60450
60451
60452
60453
60454
60455
60456
60457
60458
60459
60460
60461
60462
60463
60464
60465
60466
60467
60468
60469
60470
60471
60472
60473
60474
60475
60476
60477
60478
60479
60480
60481
60482
60483
60484
60485
60486
60487
60488
60489
60490
60491
60492
60493
60494
60495
60496
60497
60498
60499
60500
60501
60502
60503
60504
60505
60506
60507
60508
60509
60510
60511
60512
60513
60514
60515
60516
60517
60518
60519
60520
60521
60522
60523
60524
60525
60526
60527
60528
60529
60530
60531
60532
60533
60534
60535
60536
60537
60538
60539
60540
60541
60542
60543
60544
60545
60546
60547
60548
60549
60550
60551
60552
60553
60554
60555
60556
60557
60558
60559
60560
60561
60562
60563
60564
60565
60566
60567
60568
60569
60570
60571
60572
60573
60574
60575
60576
60577
60578
60579
60580
60581
60582
60583
60584
60585
60586
60587
60588
60589
60590
60591
60592
60593
60594
60595
60596
60597
60598
60599
60600
60601
60602
60603
60604
60605
60606
60607
60608
60609
60610
60611
60612
60613
60614
60615
60616
60617
60618
60619
60620
60621
60622
60623
60624
60625
60626
60627
60628
60629
60630
60631
60632
60633
60634
60635
60636
60637
60638
60639
60640
60641
60642
60643
60644
60645
60646
60647
60648
60649
60650
60651
60652
60653
60654
60655
60656
60657
60658
60659
60660
60661
60662
60663
60664
60665
60666
60667
60668
60669
60670
60671
60672
60673
60674
60675
60676
60677
60678
60679
60680
60681
60682
60683
60684
60685
60686
60687
60688
60689
60690
60691
60692
60693
60694
60695
60696
60697
60698
60699
60700
60701
60702
60703
60704
60705
60706
60707
60708
60709
60710
60711
60712
60713
60714
60715
60716
60717
60718
60719
60720
60721
60722
60723
60724
60725
60726
60727
60728
60729
60730
60731
60732
60733
60734
60735
60736
60737
60738
60739
60740
60741
60742
60743
60744
60745
60746
60747
60748
60749
60750
60751
60752
60753
60754
60755
60756
60757
60758
60759
60760
60761
60762
60763
60764
60765
60766
60767
60768
60769
60770
60771
60772
60773
60774
60775
60776
60777
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attackers: kpi_id {
kpi_id {
uuid: "5"
}
}
timestamp {
timestamp: 1680264352.0411
}
kpi_value {
int32Val: 0
}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "1"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.0411}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "2"}}, "kpi_value": {"floatVal": 0.99979836}, "timestamp": {"timestamp": 1680264352.0411}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "3"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.0411}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "4"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.0411}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "5"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.0411}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:KPIs sent to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Monitoring KPIs performed in 0.036986589431762695 seconds
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:cryptomining_detector_output: {'confidence': 1.0, 'timestamp': '31/03/2023 12:05:52', 'ip_o': '10.100.200.3', 'ip_d': '192.168.1.198', 'tag_name': 'Normal', 'tag': 0, 'flow_id': '10.100.200.3:6267:192.168.1.198:443', 'protocol': 'TCP', 'port_o': '6267', 'port_d': '443', 'ml_id': 'crypto_5g_rf_spider_features.onnx', 'service_id': , 'endpoint_id': , 'time_start': 1680264320.0, 'time_end': 1680264320.0}
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections Correctly Classified: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Overall Detection Accuracy: 1.0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Attack Detection Accuracy: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Detector Confidence: 1.0
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Exporting prediction accuracy and confidence
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Time elapsed: 224.2920274734497
INFO:root:No attack detected
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics reply: {"message": "Ok, information received (no attack detected)"}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics request: {"connection_metadata": {"flow_id": "10.100.200.3:44157:192.168.1.198:443", "ip_d": "192.168.1.198", "ip_o": "10.100.200.3", "port_d": "443", "port_o": "44157", "protocol": "TCP", "time_end": 1680264300.0, "time_start": 1680264300.0}, "features": [{"feature": 16.0}, {"feature": 15.0}, {"feature": 1408.0}, {"feature": 6.0}, {"feature": 1408.0}, {"feature": 16.0}, {"feature": 16.0}, {"feature": 1469.0}, {"feature": 8.0}, {"feature": 2073.0}]}
INFO:root:Performing inference...
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:batch_size: 1
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Average inference time: 0.00037529760536593926
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Max inference time: 0.023534937005024403
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Min inference time: 8.833495667204261e-05
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Standard deviation inference time: 0.0012812778207617619
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Median inference time: 0.0002542724832892418
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Inference performed in 0.0029325485229492188 seconds
INFO:root:Inference performed correctly
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:inference_results length: 1606
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:current_time: 2023-03-31 12:05:52.088033
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_start: 2023-03-31 12:05:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_end: 2023-03-31 12:06:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:service_id:
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Sending KPIs to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_security_status: kpi_id {
kpi_id {
uuid: "1"
}
}
timestamp {
timestamp: 1680264352.0884
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_conf: kpi_id {
kpi_id {
uuid: "2"
}
}
timestamp {
timestamp: 1680264352.0884
}
kpi_value {
floatVal: 0.999798715
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attack_conns: kpi_id {
kpi_id {
uuid: "3"
}
}
timestamp {
timestamp: 1680264352.0884
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_compromised_clients: kpi_id {
kpi_id {
uuid: "4"
}
}
timestamp {
timestamp: 1680264352.0884
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attackers: kpi_id {
kpi_id {
uuid: "5"
}
}
timestamp {
timestamp: 1680264352.0884
}
kpi_value {
int32Val: 0
}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "1"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.0884}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "2"}}, "kpi_value": {"floatVal": 0.9997987}, "timestamp": {"timestamp": 1680264352.0884}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "3"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.0884}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "4"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.0884}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "5"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.0884}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:KPIs sent to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Monitoring KPIs performed in 0.06212663650512695 seconds
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:cryptomining_detector_output: {'confidence': 1.0, 'timestamp': '31/03/2023 12:05:52', 'ip_o': '10.100.200.3', 'ip_d': '192.168.1.198', 'tag_name': 'Normal', 'tag': 0, 'flow_id': '10.100.200.3:44157:192.168.1.198:443', 'protocol': 'TCP', 'port_o': '44157', 'port_d': '443', 'ml_id': 'crypto_5g_rf_spider_features.onnx', 'service_id': , 'endpoint_id': , 'time_start': 1680264320.0, 'time_end': 1680264320.0}
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections Correctly Classified: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Overall Detection Accuracy: 1.0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Attack Detection Accuracy: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Detector Confidence: 1.0
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Exporting prediction accuracy and confidence
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Time elapsed: 224.36391234397888
INFO:root:No attack detected
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics reply: {"message": "Ok, information received (no attack detected)"}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics request: {"connection_metadata": {"flow_id": "10.100.200.3:21996:192.168.1.198:443", "ip_d": "192.168.1.198", "ip_o": "10.100.200.3", "port_d": "443", "port_o": "21996", "protocol": "TCP", "time_end": 1680264300.0, "time_start": 1680264300.0}, "features": [{"feature": 15.0}, {"feature": 12.0}, {"feature": 588.0}, {"feature": 7.0}, {"feature": 1178.0}, {"feature": 10.0}, {"feature": 10.0}, {"feature": 146.0}, {"feature": 2.0}, {"feature": 292.0}]}
INFO:root:Performing inference...
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:batch_size: 1
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Average inference time: 0.0003752415446598169
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Max inference time: 0.023534937005024403
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Min inference time: 8.833495667204261e-05
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Standard deviation inference time: 0.0012808810737844202
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Median inference time: 0.00025429297238588333
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Inference performed in 0.001954793930053711 seconds
INFO:root:Inference performed correctly
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:inference_results length: 1607
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:current_time: 2023-03-31 12:05:52.157144
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_start: 2023-03-31 12:05:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_end: 2023-03-31 12:06:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:service_id:
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Sending KPIs to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_security_status: kpi_id {
kpi_id {
uuid: "1"
}
}
timestamp {
timestamp: 1680264352.1573789
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_conf: kpi_id {
kpi_id {
uuid: "2"
}
}
timestamp {
timestamp: 1680264352.1573789
}
kpi_value {
floatVal: 0.999799073
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attack_conns: kpi_id {
kpi_id {
uuid: "3"
}
}
timestamp {
timestamp: 1680264352.1573789
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_compromised_clients: kpi_id {
kpi_id {
uuid: "4"
}
}
timestamp {
timestamp: 1680264352.1573789
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attackers: kpi_id {
kpi_id {
uuid: "5"
}
}
timestamp {
timestamp: 1680264352.1573789
}
kpi_value {
int32Val: 0
}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "1"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.157379}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "2"}}, "kpi_value": {"floatVal": 0.9997991}, "timestamp": {"timestamp": 1680264352.157379}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "3"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.157379}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "4"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.157379}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "5"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.157379}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:KPIs sent to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Monitoring KPIs performed in 0.02618122100830078 seconds
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:cryptomining_detector_output: {'confidence': 1.0, 'timestamp': '31/03/2023 12:05:52', 'ip_o': '10.100.200.3', 'ip_d': '192.168.1.198', 'tag_name': 'Normal', 'tag': 0, 'flow_id': '10.100.200.3:21996:192.168.1.198:443', 'protocol': 'TCP', 'port_o': '21996', 'port_d': '443', 'ml_id': 'crypto_5g_rf_spider_features.onnx', 'service_id': , 'endpoint_id': , 'time_start': 1680264320.0, 'time_end': 1680264320.0}
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections Correctly Classified: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Overall Detection Accuracy: 1.0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Attack Detection Accuracy: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Detector Confidence: 1.0
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Exporting prediction accuracy and confidence
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Time elapsed: 224.39678740501404
INFO:root:No attack detected
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics reply: {"message": "Ok, information received (no attack detected)"}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics request: {"connection_metadata": {"flow_id": "10.100.200.3:6267:192.168.1.198:443", "ip_d": "192.168.1.198", "ip_o": "10.100.200.3", "port_d": "443", "port_o": "6267", "protocol": "TCP", "time_end": 1680264300.0, "time_start": 1680264300.0}, "features": [{"feature": 12.0}, {"feature": 11.0}, {"feature": 588.0}, {"feature": 9.0}, {"feature": 1956.0}, {"feature": 9.0}, {"feature": 9.0}, {"feature": 146.0}, {"feature": 1.0}, {"feature": 146.0}]}
INFO:root:Performing inference...
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:batch_size: 1
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Average inference time: 0.0003751725069839688
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Max inference time: 0.023534937005024403
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Min inference time: 8.833495667204261e-05
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Standard deviation inference time: 0.0012804857187035297
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Median inference time: 0.0002543049631640315
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Inference performed in 0.0018398761749267578 seconds
INFO:root:Inference performed correctly
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:inference_results length: 1608
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:current_time: 2023-03-31 12:05:52.191157
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_start: 2023-03-31 12:05:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_end: 2023-03-31 12:06:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:service_id:
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Sending KPIs to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_security_status: kpi_id {
kpi_id {
uuid: "1"
}
}
timestamp {
timestamp: 1680264352.191365
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_conf: kpi_id {
kpi_id {
uuid: "2"
}
}
timestamp {
timestamp: 1680264352.191365
}
kpi_value {
floatVal: 0.99979943
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attack_conns: kpi_id {
kpi_id {
uuid: "3"
}
}
timestamp {
timestamp: 1680264352.191365
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_compromised_clients: kpi_id {
kpi_id {
uuid: "4"
}
}
timestamp {
timestamp: 1680264352.191365
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attackers: kpi_id {
kpi_id {
uuid: "5"
}
}
timestamp {
timestamp: 1680264352.191365
}
kpi_value {
int32Val: 0
}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "1"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.191365}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "2"}}, "kpi_value": {"floatVal": 0.99979943}, "timestamp": {"timestamp": 1680264352.191365}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "3"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.191365}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "4"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.191365}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "5"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.191365}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:KPIs sent to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Monitoring KPIs performed in 0.0569918155670166 seconds
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:cryptomining_detector_output: {'confidence': 1.0, 'timestamp': '31/03/2023 12:05:52', 'ip_o': '10.100.200.3', 'ip_d': '192.168.1.198', 'tag_name': 'Normal', 'tag': 0, 'flow_id': '10.100.200.3:6267:192.168.1.198:443', 'protocol': 'TCP', 'port_o': '6267', 'port_d': '443', 'ml_id': 'crypto_5g_rf_spider_features.onnx', 'service_id': , 'endpoint_id': , 'time_start': 1680264320.0, 'time_end': 1680264320.0}
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections Correctly Classified: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Overall Detection Accuracy: 1.0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Attack Detection Accuracy: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Detector Confidence: 1.0
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Exporting prediction accuracy and confidence
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Time elapsed: 224.46166276931763
INFO:root:No attack detected
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics reply: {"message": "Ok, information received (no attack detected)"}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics request: {"connection_metadata": {"flow_id": "10.100.200.15:59218:91.121.140.167:443", "ip_d": "91.121.140.167", "ip_o": "10.100.200.15", "port_d": "443", "port_o": "59218", "protocol": "TCP", "time_end": 1680264300.0, "time_start": 1680264300.0}, "features": [{"feature": 1.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}]}
INFO:root:Performing inference...
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:batch_size: 1
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Average inference time: 0.000375133776402586
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Max inference time: 0.023534937005024403
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Min inference time: 8.833495667204261e-05
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Standard deviation inference time: 0.0012800886854935276
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Median inference time: 0.0002543169539421797
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Inference performed in 0.001874685287475586 seconds
INFO:root:Inference performed correctly
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:inference_results length: 1609
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:current_time: 2023-03-31 12:05:52.329384
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_start: 2023-03-31 12:05:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_end: 2023-03-31 12:06:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:service_id:
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Sending KPIs to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_security_status: kpi_id {
kpi_id {
uuid: "1"
}
}
timestamp {
timestamp: 1680264352.3295879
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_conf: kpi_id {
kpi_id {
uuid: "2"
}
}
timestamp {
timestamp: 1680264352.3295879
}
kpi_value {
floatVal: 0.999799788
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attack_conns: kpi_id {
kpi_id {
uuid: "3"
}
}
timestamp {
timestamp: 1680264352.3295879
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_compromised_clients: kpi_id {
kpi_id {
uuid: "4"
}
}
timestamp {
timestamp: 1680264352.3295879
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attackers: kpi_id {
kpi_id {
uuid: "5"
}
}
timestamp {
timestamp: 1680264352.3295879
}
kpi_value {
int32Val: 0
}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "1"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.329588}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "2"}}, "kpi_value": {"floatVal": 0.9997998}, "timestamp": {"timestamp": 1680264352.329588}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "3"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.329588}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "4"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.329588}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "5"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.329588}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:KPIs sent to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Monitoring KPIs performed in 0.029178142547607422 seconds
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:cryptomining_detector_output: {'confidence': 0.9978645443916321, 'timestamp': '31/03/2023 12:05:52', 'ip_o': '10.100.200.15', 'ip_d': '91.121.140.167', 'tag_name': 'Normal', 'tag': 0, 'flow_id': '10.100.200.15:59218:91.121.140.167:443', 'protocol': 'TCP', 'port_o': '59218', 'port_d': '443', 'ml_id': 'crypto_5g_rf_spider_features.onnx', 'service_id': , 'endpoint_id': , 'time_start': 1680264320.0, 'time_end': 1680264320.0}
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections Correctly Classified: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Overall Detection Accuracy: 1.0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Attack Detection Accuracy: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Detector Confidence: 0.9978645443916321
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Exporting prediction accuracy and confidence
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Time elapsed: 224.57205963134766
INFO:root:No attack detected
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:False negative: ip_o: 10.100.200.15
port_o: 59218
ip_d: 91.121.140.167
port_d: 443
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics reply: {"message": "Ok, information received (no attack detected)"}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics request: {"connection_metadata": {"flow_id": "10.100.200.15:59218:91.121.140.167:443", "ip_d": "91.121.140.167", "ip_o": "10.100.200.15", "port_d": "443", "port_o": "59218", "protocol": "TCP", "time_end": 1680264300.0, "time_start": 1680264300.0}, "features": [{"feature": 1.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 1.0}, {"feature": 1.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}]}
INFO:root:Performing inference...
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:batch_size: 1
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Average inference time: 0.0003750242976549874
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Max inference time: 0.023534937005024403
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Min inference time: 8.833495667204261e-05
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Standard deviation inference time: 0.0012796986156048279
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Median inference time: 0.0002543049631640315
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Inference performed in 0.0015735626220703125 seconds
INFO:root:Inference performed correctly
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:inference_results length: 1610
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:current_time: 2023-03-31 12:05:52.365085
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_start: 2023-03-31 12:05:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_end: 2023-03-31 12:06:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:service_id:
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Sending KPIs to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_security_status: kpi_id {
kpi_id {
uuid: "1"
}
}
timestamp {
timestamp: 1680264352.365329
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_conf: kpi_id {
kpi_id {
uuid: "2"
}
}
timestamp {
timestamp: 1680264352.365329
}
kpi_value {
floatVal: 0.99979645
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attack_conns: kpi_id {
kpi_id {
uuid: "3"
}
}
timestamp {
timestamp: 1680264352.365329
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_compromised_clients: kpi_id {
kpi_id {
uuid: "4"
}
}
timestamp {
timestamp: 1680264352.365329
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attackers: kpi_id {
kpi_id {
uuid: "5"
}
}
timestamp {
timestamp: 1680264352.365329
}
kpi_value {
int32Val: 0
}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "1"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.365329}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "2"}}, "kpi_value": {"floatVal": 0.99979645}, "timestamp": {"timestamp": 1680264352.365329}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "3"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.365329}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "4"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.365329}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "5"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.365329}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:KPIs sent to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Monitoring KPIs performed in 0.03175687789916992 seconds
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:cryptomining_detector_output: {'confidence': 0.9974504113197327, 'timestamp': '31/03/2023 12:05:52', 'ip_o': '10.100.200.15', 'ip_d': '91.121.140.167', 'tag_name': 'Normal', 'tag': 0, 'flow_id': '10.100.200.15:59218:91.121.140.167:443', 'protocol': 'TCP', 'port_o': '59218', 'port_d': '443', 'ml_id': 'crypto_5g_rf_spider_features.onnx', 'service_id': , 'endpoint_id': , 'time_start': 1680264320.0, 'time_end': 1680264320.0}
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections Correctly Classified: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Overall Detection Accuracy: 0.9993784959602238
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Attack Detection Accuracy: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Detector Confidence: 0.9974504113197327
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Exporting prediction accuracy and confidence
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Time elapsed: 224.61029481887817
INFO:root:No attack detected
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:False negative: ip_o: 10.100.200.15
port_o: 59218
ip_d: 91.121.140.167
port_d: 443
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics reply: {"message": "Ok, information received (no attack detected)"}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics request: {"connection_metadata": {"flow_id": "10.100.200.15:59218:91.121.140.167:443", "ip_d": "91.121.140.167", "ip_o": "10.100.200.15", "port_d": "443", "port_o": "59218", "protocol": "TCP", "time_end": 1680264300.0, "time_start": 1680264300.0}, "features": [{"feature": 2.0}, {"feature": 1.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 1.0}, {"feature": 1.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}]}
INFO:root:Performing inference...
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:batch_size: 1
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Average inference time: 0.00037497352032756295
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Max inference time: 0.023534937005024403
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Min inference time: 8.833495667204261e-05
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Standard deviation inference time: 0.0012793030011299072
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Median inference time: 0.0002543169539421797
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Inference performed in 0.0017819404602050781 seconds
INFO:root:Inference performed correctly
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:inference_results length: 1611
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:current_time: 2023-03-31 12:05:52.403214
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_start: 2023-03-31 12:05:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_end: 2023-03-31 12:06:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:service_id:
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Sending KPIs to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_security_status: kpi_id {
kpi_id {
uuid: "1"
}
}
timestamp {
timestamp: 1680264352.40345
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_conf: kpi_id {
kpi_id {
uuid: "2"
}
}
timestamp {
timestamp: 1680264352.40345
}
kpi_value {
floatVal: 0.999792337
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attack_conns: kpi_id {
kpi_id {
uuid: "3"
}
}
timestamp {
timestamp: 1680264352.40345
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_compromised_clients: kpi_id {
kpi_id {
uuid: "4"
}
}
timestamp {
timestamp: 1680264352.40345
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attackers: kpi_id {
kpi_id {
uuid: "5"
}
}
timestamp {
timestamp: 1680264352.40345
}
kpi_value {
int32Val: 0
}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "1"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.40345}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "2"}}, "kpi_value": {"floatVal": 0.99979234}, "timestamp": {"timestamp": 1680264352.40345}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "3"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.40345}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "4"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.40345}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "5"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.40345}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:KPIs sent to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Monitoring KPIs performed in 0.0461735725402832 seconds
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:cryptomining_detector_output: {'confidence': 0.9975987672805786, 'timestamp': '31/03/2023 12:05:52', 'ip_o': '10.100.200.15', 'ip_d': '91.121.140.167', 'tag_name': 'Normal', 'tag': 0, 'flow_id': '10.100.200.15:59218:91.121.140.167:443', 'protocol': 'TCP', 'port_o': '59218', 'port_d': '443', 'ml_id': 'crypto_5g_rf_spider_features.onnx', 'service_id': , 'endpoint_id': , 'time_start': 1680264320.0, 'time_end': 1680264320.0}
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections Correctly Classified: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Overall Detection Accuracy: 0.9987577639751553
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Attack Detection Accuracy: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Detector Confidence: 0.9975987672805786
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Exporting prediction accuracy and confidence
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Time elapsed: 224.66290521621704
INFO:root:No attack detected
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:False negative: ip_o: 10.100.200.15
port_o: 59218
ip_d: 91.121.140.167
port_d: 443
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics reply: {"message": "Ok, information received (no attack detected)"}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:AnalyzeConnectionStatistics request: {"connection_metadata": {"flow_id": "10.100.200.15:59218:91.121.140.167:443", "ip_d": "91.121.140.167", "ip_o": "10.100.200.15", "port_d": "443", "port_o": "59218", "protocol": "TCP", "time_end": 1680264300.0, "time_start": 1680264300.0}, "features": [{"feature": 3.0}, {"feature": 2.0}, {"feature": 283.0}, {"feature": 1.0}, {"feature": 283.0}, {"feature": 1.0}, {"feature": 1.0}, {"feature": 0.0}, {"feature": 0.0}, {"feature": 0.0}]}
INFO:root:Performing inference...
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:batch_size: 1
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:x_data.shape: (1, 10)
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Average inference time: 0.000374867878549515
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Max inference time: 0.023534937005024403
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Min inference time: 8.833495667204261e-05
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Standard deviation inference time: 0.0012789131624869373
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Median inference time: 0.0002543049631640315
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Inference performed in 0.0018765926361083984 seconds
INFO:root:Inference performed correctly
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:inference_results length: 1612
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:current_time: 2023-03-31 12:05:52.455365
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_start: 2023-03-31 12:05:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:time_interval_end: 2023-03-31 12:06:19.539665
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:service_id:
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Sending KPIs to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_security_status: kpi_id {
kpi_id {
uuid: "1"
}
}
timestamp {
timestamp: 1680264352.4555669
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_conf: kpi_id {
kpi_id {
uuid: "2"
}
}
timestamp {
timestamp: 1680264352.4555669
}
kpi_value {
floatVal: 0.999788523
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attack_conns: kpi_id {
kpi_id {
uuid: "3"
}
}
timestamp {
timestamp: 1680264352.4555669
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_compromised_clients: kpi_id {
kpi_id {
uuid: "4"
}
}
timestamp {
timestamp: 1680264352.4555669
}
kpi_value {
int32Val: 0
}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:kpi_unique_attackers: kpi_id {
kpi_id {
uuid: "5"
}
}
timestamp {
timestamp: 1680264352.4555669
}
kpi_value {
int32Val: 0
}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "1"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.455567}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "2"}}, "kpi_value": {"floatVal": 0.9997885}, "timestamp": {"timestamp": 1680264352.455567}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "3"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.455567}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "4"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.455567}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi: {"kpi_id": {"kpi_id": {"uuid": "5"}}, "kpi_value": {"int32Val": 0}, "timestamp": {"timestamp": 1680264352.455567}}
DEBUG:monitoring.client.MonitoringClient:IncludeKpi result: {}
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:KPIs sent to monitoring server
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Monitoring KPIs performed in 0.05665087699890137 seconds
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:cryptomining_detector_output: {'confidence': 0.9999995827674866, 'timestamp': '31/03/2023 12:05:52', 'ip_o': '10.100.200.15', 'ip_d': '91.121.140.167', 'tag_name': 'Crypto', 'tag': 1, 'flow_id': '10.100.200.15:59218:91.121.140.167:443', 'protocol': 'TCP', 'port_o': '59218', 'port_d': '443', 'ml_id': 'crypto_5g_rf_spider_features.onnx', 'service_id': , 'endpoint_id': , 'time_start': 1680264320.0, 'time_end': 1680264320.0}
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections Correctly Classified: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Number of Attack Connections: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Overall Detection Accuracy: 0.9981378026070763
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Attack Detection Accuracy: 0
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Cryptomining Detector Confidence: 0.9999995827674866
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Exporting prediction accuracy and confidence
INFO:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Time elapsed: 224.72550582885742
DEBUG:l3_centralizedattackdetector.service.l3_centralizedattackdetectorServiceServicerImpl:Crypto attack detected
INFO:root:Notifying the Attack Mitigator component about the attack in order to block the connection...
INFO:root:Sending the connection information to the Attack Mitigator component...
DEBUG:l3_attackmitigator.client.l3_attackmitigatorClient:PerformMitigation request: confidence: 0.999999583
timestamp: "31/03/2023 12:05:52"
ip_o: "10.100.200.15"
ip_d: "91.121.140.167"
tag_name: "Crypto"
tag: 1
flow_id: "10.100.200.15:59218:91.121.140.167:443"
protocol: "TCP"
port_o: "59218"
port_d: "443"
ml_id: "crypto_5g_rf_spider_features.onnx"
service_id {
}
endpoint_id {
}
time_start: 1.68026432e+09
time_end: 1.68026432e+09