• DocumentCode
    2605741
  • Title

    On Detection Accuracy of L7-filter and OpenDPI

  • Author

    Shen, Chaofan ; Huang, Leijun

  • fYear
    2012
  • fDate
    21-24 Oct. 2012
  • Firstpage
    119
  • Lastpage
    123
  • Abstract
    Traffic identification is an important issue in the network industry. Due to the rapid increase of applications and protocols in the Internet, traffic identification based on TCP/UDP port numbers is no longer a practical approach. Deep packet inspection (DPI) thus becomes necessary, which scans the payload of a flow for certain patterns. In this paper, we analyze the architectures of two popular open-source DPI solutions, L7-filter and OpenDPI, along with their capabilities and limitations. Our extension to L7-filter, called L7-filter-U, which improves the detection accuracy on UDP flows, is also presented. Experiments on real-world traces show that OpenDPI has higher detection accuracy than L7-filter-U, which in turn performs better than L7-filter.
  • Keywords
    Accuracy; Inspection; Internet; Pattern matching; Payloads; Protocols; deep packet inspection; traffic identification;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Networking and Distributed Computing (ICNDC), 2012 Third International Conference on
  • Conference_Location
    Hangzhou, China
  • ISSN
    2165-5006
  • Print_ISBN
    978-1-4673-2858-6
  • Type

    conf

  • DOI
    10.1109/ICNDC.2012.36
  • Filename
    6386665
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2605741