A temporal-aware signature extraction method using sliding-window mechanism for scalable, cost-effective and accurate traffic classification
作者: Yichiet Aun , Selvakumar Manickam , Shankar Karuppayah
DOI: 10.1109/ICCSCE.2017.8284397
关键词:
摘要: Payload-based traffic classification use a subset of highly correlated payload bytes as signature to identify unlabeled classes. However, these correlations diminish over time due application behavioural changes, resulting in lower true positive subsequent classifications. The short time-to-live signatures means that can become outdated quickly, and new set are needed preserve accuracy. Extracting is computational expensive not scalable continuous changes. This paper proposed lightweight automatic extraction method adaptively recalibrate the sets reflect transitions using sliding-window mechanism. algorithm Leviathan Distance detect optimal number (K) uniquely discriminate Sliding-k then shrink or expand k value base address for temporal changes instead rebuilding completely. experimental results showed sliding-k effective reducing length while preserving accuracy classification.
sci-hub.se 参考文章(13)
Michael Finsterbusch, Chris Richter, Eduardo Rocha, Jean-Alexander Muller, Klaus Hanssgen, A Survey of Payload-Based Traffic Classification Approaches IEEE Communications Surveys and Tutorials. ,vol. 16, pp. 1135- 1156 ,(2014) , 10.1109/SURV.2013.100613.00161
Guang Cheng, Yongning Tang, PortView: identifying port roles based on port fuzzy macroscopic behavior Journal of Internet Services and Applications. ,vol. 4, pp. 9- ,(2013) , 10.1186/1869-0238-4-9
Zhenlong Yuan, Yibo Xue, Yingfei Dong, Harvesting unique characteristics in packet sequences for effective application classification communications and networking symposium. pp. 341- 349 ,(2013) , 10.1109/CNS.2013.6682724
Thuy T.T. Nguyen, Grenville Armitage, A survey of techniques for internet traffic classification using machine learning IEEE Communications Surveys and Tutorials. ,vol. 10, pp. 56- 76 ,(2008) , 10.1109/SURV.2008.080406
Kwangjin Choi, Jun-kyun Choi, Sangyong Ha, Se Yun Ban, Content-based pattern matching for classification of network application international conference on advanced communication technology. ,vol. 3, pp. 2027- 2029 ,(2006) , 10.1109/ICACT.2006.206394
Yuanmin Fang, Jie Chen, Yonghua Xia, Weiwei Song, Yongming Yang, Research on Adaptive Classification Algorithm of Remote Sensing Image international symposium on image and data fusion. pp. 1- 4 ,(2011) , 10.1109/ISIDF.2011.6024246
Stenio Fernandes, Rafael Antonello, Thiago Lacerda, Alysson Santos, Djamel Sadok, Tord Westholm, Slimming Down Deep Packet Inspection Systems IEEE INFOCOM Workshops 2009. pp. 61- 66 ,(2009) , 10.1109/INFCOMW.2009.5072188
N. Hua, H. Song, T. V. Lakshman, Variable-Stride Multi-Pattern Matching For Scalable Deep Packet Inspection international conference on computer communications. pp. 415- 423 ,(2009) , 10.1109/INFCOM.2009.5061946
Xiaofei Wang, Junchen Jiang, Yi Tang, Bin Liu, Xiaojun Wang, StriD²FA: Scalable Regular Expression Matching for Deep Packet Inspection 2011 IEEE International Conference on Communications (ICC). pp. 1- 5 ,(2011) , 10.1109/ICC.2011.5963289
S. Zander, T. Nguyen, G. Armitage, Automated traffic classification and application identification using machine learning local computer networks. pp. 250- 257 ,(2005) , 10.1109/LCN.2005.35