1Masaryk University (Kamenice 5, Brno CZ-62500, Czech Republic
- République tchèque)
Abstract : This paper describes a protocol detection using statistic information about a flow extended by packet sizes and time characteristics, which consist of packet inter-arrival times. The most common way of network traffic classification is a deep packet inspection (DPI). Our approach deals with the DPI disadvantage in power consumption using aggregated IPFIX data instead of looking into packet content. According to our previous experiments, we have found that applications have their own behavioral pattern, which can be used for the applications detection. With a respect to current state of development, we mainly present the idea, the results which we have achieved so far and of our future work.
Isabelle Chrisment; Alva Couch; Rémi Badonnel; Martin Waldburger. 5th Autonomous Infrastructure, Management and Security (AIMS), Jun 2011, Nancy, France. Springer, Lecture Notes in Computer Science, LNCS-6734, pp.173-176, 2011, Managing the Dynamics of Networks and Services. 〈10.1007/978-3-642-21484-4_21〉
https://hal.inria.fr/hal-01585856
Contributeur : Hal Ifip
<>
Soumis le : mardi 12 septembre 2017 - 10:19:22
Dernière modification le : mardi 12 septembre 2017 - 10:22:14
Document(s) archivé(s) le : mercredi 13 décembre 2017 - 16:18:27
Pavel Piskac, Jiri Novotny. Using of Time Characteristics in Data Flow for Traffic Classification. Isabelle Chrisment; Alva Couch; Rémi Badonnel; Martin Waldburger. 5th Autonomous Infrastructure, Management and Security (AIMS), Jun 2011, Nancy, France. Springer, Lecture Notes in Computer Science, LNCS-6734, pp.173-176, 2011, Managing the Dynamics of Networks and Services. 〈10.1007/978-3-642-21484-4_21〉. 〈hal-01585856〉
