Conference paper
Automated traffic classification and application identification using machine learning
The IEEE Conference on Local Computer Networks 30th Anniversary (LCN'05)l
IEEE Conference on Local Computer Networks (LCN) 2005: 30th Anniversary (Sydney, Australia, 17/11/2005)
2005
Abstract
The dynamic classification and identification of network applications responsible for network traffic flows offers substantial benefits to a number of key areas in IP network engineering, management and surveillance. Currently such classifications rely on selected packet header fields (e.g. port numbers) or application layer protocol decoding. These methods have a number of shortfalls e.g. many applications can use unpredictable port numbers and protocol decoding requires a high amount of computing resources or is simply infeasible in case protocols are unknown or encrypted. We propose a novel method for traffic classification and application identification using an unsupervised machine learning technique. Flows are automatically classified based on statistical flow characteristics. We evaluate the efficiency of our approach using data from several traffic traces collected at different locations of the Internet. We use feature selection to find an optimal feature set and determine the influence of different features
Details
- Title
- Automated traffic classification and application identification using machine learning
- Authors/Creators
- S. Zander (Author/Creator) - Swinburne University of TechnologyT. Nguyen (Author/Creator)G. Armitage (Author/Creator) - Swinburne University of Technology
- Publication Details
- The IEEE Conference on Local Computer Networks 30th Anniversary (LCN'05)l
- Conference
- IEEE Conference on Local Computer Networks (LCN) 2005: 30th Anniversary (Sydney, Australia, 17/11/2005)
- Identifiers
- 991005542771407891
- Murdoch Affiliation
- Murdoch University
- Language
- English
- Resource Type
- Conference paper
Metrics
2933 File views/ downloads
162 Record Views