Network Traffic Classification by Program Synthesis
نویسندگان
چکیده
Abstract Writing classification rules to identify interesting network traffic is a time-consuming and error-prone task. Learning-based systems automatically extract such from positive negative examples. However, due limitations in the representation of learning strategy, these lack both expressiveness cover range applications interpretability fully describing traffic’s structure at session layer. This paper presents Sharingan system, which uses program synthesis techniques generate programs accepts raw traces as inputs reports potential patterns target NetQRE, domain specific language designed for specifying session-layer quantitative properties. We develop novel optimizations that reduce time large complex tasks matter minutes. Our experiments show able correctly diverse set generates explainable outputs, while achieving accuracy comparable state-of-the-art learning-based systems.
منابع مشابه
Automatic Network Traffic Classification
.......................................................................................................... I Table of
متن کاملReview on Network Traffic Classification
Traffic classification has wide applications in network management, from security monitoring to quality of service measurements. Recent research tends to apply machine learning techniques to flow statistical feature based classification methods. The nearest neighbor (NN)-based method has exhibited superior classification performance. It also has several important advantages, such as no requirem...
متن کاملMachine Learning Classification of Malicious Network Traffic
1.1. Intrusion Detection Systems. In our society, information systems are everywhere. They are used by corporations to store proprietary and other sensitive data, by families to store financial and personal information, by universities to keep research data and ideas, and by governments to store defense and security information. It is very important that the information systems that house this ...
متن کاملNetwork Traffic Classification: - From Theory To Practice
Since its inception until today, the Internet has been in constant transformation. The analysis and monitoring of data networks try to shed some light on this huge black box of interconnected computers. In particular, the classification of the network traffic has become crucial for understanding the Internet. During the last years, the research community has proposed many solutions to accuratel...
متن کاملTowards self adaptive network traffic classification
A critical aspect of network management from an operator’s perspective is the ability to understand or classify all traffic that traverses the network. The failure of port based traffic classification technique triggered an interest in discovering signatures based on packet content. However, this approach involves manually reverse engineering all the applications/protocols that need to be ident...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Lecture Notes in Computer Science
سال: 2021
ISSN: ['1611-3349', '0302-9743']
DOI: https://doi.org/10.1007/978-3-030-72016-2_23