Towards time-varying classification based on traffic pattern

Author

Yiyang Shao ; Luoshi Zhang ; Xiaoxian Chen ; Yibo Xue

Author_Institution

Dept. of Autom., Tsinghua Univ., Beijing, China

fYear

2014

fDate

29-31 Oct. 2014

Firstpage

512

Lastpage

513

Abstract

Many important network security areas, such as Intrusion Detection System and Next-Generation Firewall, leverage Traffic Classification techniques to reveal application-level protocols. Machine Learning algorithms give us the ability to identify encrypted or complicated traffic. However, classification accuracies of Machine Learning algorithms are always facing challenges and doubts in practical usage. In this paper, we propose a time-varying Logistic Regression model embedded with traffic pattern. The comparison between original Logistic Regression model and time-varying one shows an effective improvement in accuracy. We hope to exploit a new way to implement Machine Learning algorithms in network traffic analysis areas by considering the characteristics of traffic changes in time domain.

Keywords

cryptography; firewalls; learning (artificial intelligence); next generation networks; regression analysis; telecommunication traffic; accuracy improvement; application-level protocols; encrypted-complicated traffic identification; intrusion detection system; machine learning algorithms; network security; next-generation firewall; time domain; time-varying classification; time-varying logistic regression model; traffic change characteristics; traffic classification techniques; traffic pattern; Accuracy; Educational institutions; Logistics; Machine learning algorithms; Ports (Computers); Protocols; Security; Logistic Regression; Time-varying Model; Traffic Classification; Traffic Pattern;

fLanguage

English

Publisher

ieee

Conference_Titel

Communications and Network Security (CNS), 2014 IEEE Conference on

Conference_Location

San Francisco, CA

Type

conf

DOI

10.1109/CNS.2014.6997530

Filename

6997530