网络汇聚点传输层拓扑的流量识别

Traffic identification based on transport-layer topology at network aggregation point

下载PDF

导出

摘要针对利用数据流统计特性的网络流量分类算法复杂及实时性差的问题,提出一种基于传输层拓扑的网络流量识别方法,根据应用类型在汇聚节点表现出不同的主机连接拓扑结构,提取应用类型的拓扑特征,结合深度包检测(DPI)技术生成应用类型库,并基于该库和启发式准则实现典型应用类型的快速识别和分类。实验结果表明,所提方法对各主要应用类型的识别精确度均高于85%,并将未识别流比例从深度包检测技术的18%降低到7%,有效利用了不同应用类型的连接拓扑信息,能提高应用类型的识别准确度。 Considering the complexity and poor real-time quality of classification algorithms based on the statistical characteristics of network traffic,a new traffic identification method was proposed based on transport-layer topology.According to the different host connection characteristics in terms of application types at aggregation point,the proposed method extracted topological characteristics of application types by capturing the transport layer connection information,and then produced application type pools based on Deep-in Packet Inspection（DPI） technique,finally identified the application types of traffic combining the pools and heuristic rules.The experimental results show that the proposed method gains precision higher than 85% for identifying main application types and reduces ratio of un-identified flows from 18% to 7%.It utilizes transport-layer topology information of different application types and can enhance the recognition accuracy of application types.

作者张剑曹萍寿国础

机构地区闽江学院计算机科学系北京邮电大学信息与通信工程学院福州大学公共管理学院

出处《计算机应用》 CSCD 北大核心 2012年第7期1807-1811,共5页 journal of Computer Applications

基金国家863计划项目(2008AA01Z218)

关键词流量识别传输层拓扑结构应用类型库 traffic identification transport layer topological structure application type pool

分类号 TP393.07 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献11

1CALLADO A, KAMIENSKI C, traffic identification [ J]. IEEE C als, 2009, 11(3): 37-52.
2SZABO G. A survey on lnternet Surveys and Tutori- SEN S, SPATSCHECK O, WANG D. Accurate scalable in network identification of P2P traffic using application signatures [ C]// Pro- ceedings of the 13th International Conference on World Wide Web. New York: ACM, 2004:512-521.
3ZANDER S, NGUYEN T, ARMITAGE G. Automated traffic classi- fication and application identification using machine learning [ C]// Proceedings ot the 30th Conference on Local Compuler Networks. Piscataway: IEEE, 2005:1-8.
4ERMAN J, ARLITT M, MAHANTI A. Traffic classification using clustering algorithms [ C ]// Proceedings of the 2006 SIGCOMM Workshop on Mining Network Data. New York: ACM, 2006:11 - 15.
5蔡君,余顺争.基于复杂网络社团划分的网络流量分类[J].计算机科学,2011,38(3):80-82. 被引量：5
6KARAGIANNIS T, PAPAGIANNAKI D, FALOUTSOS M. BLINC: Multilevel traffic classification in the dark [ J]. Computer Communi- cation Review, 2005, 35(4): 229-240.
7DEWAELE G, HIMURA Y, BORGNAT P. Unsupervised host be- havior classification from connection patterns [ J]. International Jour- nal of Network Management, 2010, 20(5) : 317 -337.
8WEI L, MOORE W, CANINI M. Classifying HTI'P traffic in the new age [ C ]// Conference of the Special Interest Group on Data Communication 2008. New York: ACM, 2008:479-480.
9FLOYD S, PAXSON V. Difficulties in simulating the Internet [ J]. IEEE/ACM Transactions on Networking, 2001, 9(4): 392 -403.
10SOULE A, LAKHINA A, TAFT N, et al. Traffic matrices: balan- cing measurements, inference and modeling [ J]. ACM SIGMET- RICS Performance Evaluation Review, 2005: 33( 1 ) : 362 - 373.

二级参考文献21

1David F. P2P file sharing-The evolving distribution chain [EB/OL]. (2006). http://www.dcia. info/aetivities/p2pmswde 2006/ferguson. pdf.
2Greenberg A, Hjalmtysson G, Maltz A, et al. A clean slate 4D approach to network control and management [J]. ACM SIGCOMM Computer Communication Review, 2005, 35(5) : 41 -54.
3Ripeanu M, Foster I, Iamnitchi A. Mapping the Gnutella network: Properties of large-scale peer-to-peer systems and implications for system design [J]. IEEE Internet Computing Journal, 2002, 6(1) : 50 - 57.
4Stutzbach D, Rejaie R, Sen S. Characterizing unstructured overlay topologies in modern P2P file-sharing systems [J]. Networking, IEEE/ACM Transactions on, 2008, 16(2) 267 - 280.
5Gummadi K P, Dunn R J, Saroiu S, et al. Measurement, modeling, and analysis of a peer-to-peer file-sharing workload [J]. ACM SIGOPS Operating Systems Review, 2003, 37(5) : 314- 329.
6Stutzbach D, Rejaie R. Characterizing churn in peer-to-peer networks. Technical Report, CIS-TR-2005-03 [R]. USA: University of Oregon, 2005.
7Sen S,Spatscheck O, Wang Dongmei. Accurate, scalable in network identification of p2p traffic using application signature[C]// Proceedings of the 13th international conference on World Wide Web. 2004,512-521.
8Haffner P, Sen S, Spatscheek O, et al. ACAS: Automated Construction of Application signatures[C]//Proceedings of the 2005 ACM SIGCOMM Workshop on Mining Network Data. 2005: 197 202.
9Moore A, Zuev D. Internet traffic classification using Bayesian analysis techniques [C] // ACM International Conference on Measurement and Modeling of Computer Systems (SIGMERTRICS). 2005: 50-60.
10Williams N, Zander S, Armitage G. A preliminary performance comparison of five machine learning algorithmsfor practical IP traffic flow classification[J]. Special Interest Group on Data Communication Computer Communication Review, 2006: 5-15.

共引文献6

1侯重远,江汉红,芮万智,刘亮.工业网络流量异常检测的概率主成分分析法[J].西安交通大学学报,2012,46(2):70-75. 被引量：22
2郭磊,王亚弟,陈庶樵,朱珂,韩继红.一种基于信息度量的流特征遴选算法[J].计算机工程,2012,38(16):96-99.
3汪为汉,唐学文,邓一贵.基于贝叶斯学习的集成流量分类方法[J].计算机工程,2012,38(16):164-166. 被引量：4
4段谟意.基于人工蜂群的业务流异常状态检测方法[J].计算机应用,2013,33(3):727-729. 被引量：1
5穆桃,陈伟,陈松健.基于多层网络流量分析的用户分类方法[J].计算机应用,2017,37(3):705-710. 被引量：4
6周琴.网络社团在大学生学习与心理发展中的作用探析[J].中国报业,2012,0(03X):169-170. 被引量：3

1张治斌,谭静.基于K均值与决策树的P2P流量识别研究[J].计算机工程与设计,2014,35(3):798-802. 被引量：4
2余杰,杨连贺,焦帅,易明雨,于佃存.基于三轴加速度传感器的人体行为识别研究[J].软件工程,2016,19(9):34-37. 被引量：2
3李伟,赵庆展,邓红涛.一种基于语义的Web挖掘方法研究[J].软件导刊,2014,13(1):54-55.
4计蕾,付永钢.基于模块化2D-LDA的视频监控中的人脸识别算法[J].集美大学学报（自然科学版）,2014,19(3):219-223.
5黄丽韶,朱喜基.基于BP神经网络的人脸识别系统的研究与实现[J].软件导刊,2012,11(5):78-80. 被引量：1
6聂国梁,卢正鼎.数据流变化的检测[J].计算机科学,2006,33(5):162-165.
7李楠,姬光荣.基于不同隐马尔科夫模型的图像识别方法[J].现代电子技术,2012,35(8):54-56. 被引量：2
8林富鹏,吴英杰,王一蕾,孙岚.差分隐私二维数据流统计发布[J].计算机应用,2015,35(1):88-92. 被引量：9
9宋超,刘明,龚海刚.基于车流信息的车载自组织网络路由协议[J].计算机应用研究,2009,26(12):4672-4675. 被引量：5
10丁彭父乐,张宏莉.SYN Flood攻击防御策略综述[J].智能计算机与应用,2014,4(3):28-30.

计算机应用

2012年第7期

浏览历史

内容加载中请稍等...

网络汇聚点传输层拓扑的流量识别

参考文献11

二级参考文献21

共引文献6

相关作者

相关机构

相关主题

浏览历史