Detecting Encrypted Traffic: A Machine Learning Approach

被引:4
|
作者
Cha, Seunghun [1 ]
Kim, Hyoungshick [1 ]
机构
[1] Sungkyunkwan Univ, Dept Software, Suwon, South Korea
基金
新加坡国家研究基金会;
关键词
D O I
10.1007/978-3-319-56549-1_5
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Detecting encrypted traffic is increasingly important for deep packet inspection (DPI) to improve the performance of intrusion detection systems. We propose a machine learning approach with several randomness tests to achieve high accuracy detection of encrypted traffic while requiring low overhead incurred by the detection procedure. To demonstrate how effective the proposed approach is, the performance of four classification methods (Naive Bayesian, Support Vector Machine, CART and AdaBoost) are explored. Our recommendation is to use CART which is not only capable of achieving an accuracy of 99.9% but also up to about 2.9 times more efficient than the second best candidate (Naive Bayesian).
引用
收藏
页码:54 / 65
页数:12
相关论文
共 50 条
  • [21] A Framework & System for Classification of Encrypted Network Traffic using Machine Learning
    Seddigh, Nabil
    Nandy, Biswajit
    Bennett, Don
    Ren, Yonglin
    Dolgikh, Serge
    Zeidler, Colin
    Knoetze, Juhandre
    Muthyala, Naveen Sai
    [J]. 2019 15TH INTERNATIONAL CONFERENCE ON NETWORK AND SERVICE MANAGEMENT (CNSM), 2019,
  • [22] IoT Device Fingerprinting: Machine Learning based Encrypted Traffic Analysis
    Msadek, Nizar
    Soua, Ridha
    Engel, Thomas
    [J]. 2019 IEEE WIRELESS COMMUNICATIONS AND NETWORKING CONFERENCE (WCNC), 2019,
  • [23] A new classification method for encrypted internet traffic using machine learning
    Ugurlu, Mesut
    Dogru, Ibrahim Alper
    Arslan, Recep Sinan
    [J]. TURKISH JOURNAL OF ELECTRICAL ENGINEERING AND COMPUTER SCIENCES, 2021, 29 (05) : 2450 - 2468
  • [24] Encrypted Traffic Classification at Line Rate in Programmable Switches with Machine Learning
    Akem, Aristide Tanyi-Jong
    Fraysse, Guillaume
    Fiore, Marco
    [J]. PROCEEDINGS OF 2024 IEEE/IFIP NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM, NOMS 2024, 2024,
  • [25] MEMENTO: A novel approach for class incremental learning of encrypted traffic
    Cerasuolo, Francesco
    Nascita, Alfredo
    Bovenzi, Giampaolo
    Aceto, Giuseppe
    Ciuonzo, Domenico
    Pescape, Antonio
    Rossi, Dario
    [J]. COMPUTER NETWORKS, 2024, 245
  • [26] On the Practicality of Detecting Anomalies with Encrypted Traffic in AMI
    Berthier, Robin
    Urbina, David I.
    Cardenas, Alvaro A.
    Guerrero, Michael
    Herberg, Ulrich
    Jetcheva, Jorjeta G.
    Mashima, Daisuke
    Huh, Jun Ho
    Bobba, Rakesh B.
    [J]. 2014 IEEE INTERNATIONAL CONFERENCE ON SMART GRID COMMUNICATIONS (SMARTGRIDCOMM), 2014, : 890 - 895
  • [27] Machine Learning-Powered Encrypted Network Traffic Analysis: A Comprehensive Survey
    Shen, Meng
    Ye, Ke
    Liu, Xingtong
    Zhu, Liehuang
    Kang, Jiawen
    Yu, Shui
    Li, Qi
    Xu, Ke
    [J]. IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2023, 25 (01): : 791 - 824
  • [28] Research on QoS Classification of Network Encrypted Traffic Behavior Based on Machine Learning
    Huang, Yung-Fa
    Lin, Chuan-Bi
    Chung, Chien-Min
    Chen, Ching-Mu
    [J]. ELECTRONICS, 2021, 10 (12)
  • [29] Machine learning for encrypted malicious traffic detection: Approaches, datasets and comparative study
    Wang, Zihao
    Fok, Kar Wai
    Thing, Vrizlynn L. L.
    [J]. COMPUTERS & SECURITY, 2022, 113
  • [30] Feature mining for encrypted malicious traffic detection with deep learning and other machine learning algorithms
    Wang, Zihao
    Thing, Vrizlynn L. L.
    [J]. COMPUTERS & SECURITY, 2023, 128