| HAL-Inria | Publications, software ... of Inria's scientists |
Conference papers
port2dist: Semantic Port Distances for Network Analytics
Abstract : Traffic analysis is a predominant task to support multiple types of management operations. When shifting from manually built signatures to machine learning techniques, a problem resides in the model to represent traffic features. The most notable examples are the TCP and UDP ports, near port numbers in the numerical space is not representative of a close semantic from an operational point of view. We have thus developed a technique to learn meaningful metrics between ports from scanning strategies followed by attackers. In this demonstration, we propose the port2dist tool, allowing to get, seek and retrieve semantic dissimilarities between port numbers.
Cited literature [6 references]
https://hal.inria.fr/hal-02345491
Contributor : Jérôme François Connect in order to contact the contributor
Submitted on : Monday, November 4, 2019 - 3:19:54 PM
Last modification on : Friday, February 4, 2022 - 3:32:49 AM
Long-term archiving on: : Wednesday, February 5, 2020 - 9:30:55 PM
Contributor : Jérôme François Connect in order to contact the contributor
Submitted on : Monday, November 4, 2019 - 3:19:54 PM
Last modification on : Friday, February 4, 2022 - 3:32:49 AM
Long-term archiving on: : Wednesday, February 5, 2020 - 9:30:55 PM
File
im2019.pdf
Files produced by the author(s)