Sniffing Detection Based on Network Traffic Probing and Machine Learning

被引：10

作者：

Gregorczyk, Marcin ^{[1
]}

Zorawski, Piotr ^{[1
]}

Nowakowski, Piotr ^{[1
]}

Cabaj, Krzysztof ^{[2
]}

Mazurczyk, Wojciech ^{[2
]}

机构：

[1] Warsaw Univ Technol, Inst Telecommun, PL-00665 Warsaw, Poland

[2] Warsaw Univ Technol, Inst Comp Sci, PL-00665 Warsaw, Poland

来源：

IEEE ACCESS | 2020年 / 8卷

基金：

欧盟地平线“2020”;

关键词：

Security; Machine learning; Protocols; Tools; Internet; Software; AI; artificial intelligence; ML; machine learning; network security; sniffing; threat detection;

D O I：

10.1109/ACCESS.2020.3016076

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Cyber attacks are on the rise and each day cyber criminals are developing more and more sophisticated methods to compromise the security of their targets. Sniffing is one of the most important techniques that enables the attacker to collect information on the vulnerabilities of the devices, protocols and applications that can be exploited within the targeted network. It relies mainly on passively analyzing the traffic exchanged within the network, and due to its nature, such an activity is difficult to discover. That is why, in this article, we first revisit existing techniques and tools that can be used to perform sniffing as well as the corresponding mitigation methods. Based on this background, we propose a novel measurement-based detection method that infers whether the sniffing software is active on the suspected machine by network traffic probing and machine learning techniques. The presented experimental results prove that the proposed solution is effective.

引用

页码：149255 / 149269

页数：15

共 50 条

[21] An evolutionary computation-based machine learning for network attack detection in big data traffic
Wang, Yan
Zhang, Haifeng
Wei, Yongjun
Wang, Huan
Peng, Yong
Bin, Zhiyan
Li, Weilong
APPLIED SOFT COMPUTING, 2023, 138
[22] Deep and Machine Learning Approaches for Anomaly-Based Intrusion Detection of Imbalanced Network Traffic
Abdulhammed, Razan
Faezipour, Miad
Abuzneid, Abdelshakour
AbuMallouh, Arafat
IEEE SENSORS LETTERS, 2019, 3 (01)
[23] Machine learning approaches to network intrusion detection for contemporary internet traffic
Muhammad U. Ilyas
Soltan Abed Alharbi
Computing, 2022, 104 : 1061 - 1076
[24] Intrusion Detection using Network Traffic Profiling and Machine Learning for IoT
Rose, Joseph R.
Swann, Matthew
Bendiab, Gueltoum
Shiaeles, Stavros
Kolokotronis, Nicholas
PROCEEDINGS OF THE 2021 IEEE 7TH INTERNATIONAL CONFERENCE ON NETWORK SOFTWARIZATION (NETSOFT 2021): ACCELERATING NETWORK SOFTWARIZATION IN THE COGNITIVE AGE, 2021, : 409 - 415
[25] Evaluation of Machine Learning Algorithms for Detection of Malicious Traffic in SCADA Network
L. Rajesh
Penke Satyanarayana
Journal of Electrical Engineering & Technology, 2022, 17 : 913 - 928
[26] Applying machine learning techniques for detection of malicious code in network traffic
Elovici, Yuval
Shabtai, Asaf
Moskovitch, Robert
Tahan, Gil
Glezer, Chanan
KI 2007: ADVANCES IN ARTIFICIAL INTELLIGENCE, PROCEEDINGS, 2007, 4667 : 44 - +
[27] Analysis of Machine Learning Application in Campus Network Traffic Anomaly Detection
Li R.
Applied Mathematics and Nonlinear Sciences, 2024, 9 (01)
[28] Evaluation of Machine Learning Algorithms for Detection of Malicious Traffic in SCADA Network
Rajesh, L.
Satyanarayana, Penke
JOURNAL OF ELECTRICAL ENGINEERING & TECHNOLOGY, 2022, 17 (02) : 913 - 928
[29] Anomaly Detection in Network Traffic Using Advanced Machine Learning Techniques
Ness, Stephanie
Eswarakrishnan, Vishwanath
Sridharan, Harish
Shinde, Varun
Janapareddy, Naga Venkata Prasad
Dhanawat, Vineet
IEEE ACCESS, 2025, 13 : 16133 - 16149
[30] Intrusion Detection using Network Traffic Profiling and Machine Learning for IoT
Ben Slimane, Jihane
Abd-Elkawy, Eman H.
Maqbool, Albia
JOURNAL OF ELECTRICAL SYSTEMS, 2024, 20 (03) : 2140 - 2149

← 1 2 3 4 5 →