期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

基于DNS和流量特征的业务识别系统设计 被引量:1

Design of A Business Identification System Based on DNS and Flow Characteristics
在线阅读 下载PDF
导出
摘要 互联网流量的多样性和不确定性,以及大量的OTT(over the top)业务开始布局HTTPS加密[1],使得传统的流量分类技术存在识别精度不高甚至失效的问题。为解决此问题,提出了基于DFI(Deep Flow Inspection)的识别方法。通过分析不同业务的流量特点,选择适用于当前业务分类的业务特征,并结合DNS进行识别,达到了良好的区分粒度和较高的识别精度。我们使用这些特征构建DFI业务识别系统,并通过大量的识别实验和系统分析对其进行评估。结果表明,业务识别系统对各类业务的识别精度均在85%以上。 The diversity and uncertainty of internet traffic,and a great quantity of OTT business began to layout HTTPS encryption,bring a lot of problems in traditional traffic classification techniques,such as low recognition accuracies or even recognition failures.To address this problem.This paper proposes a new recognition method based on DFI,and selects appropriate business characteristics for the current business classification through the analysis of the flow characteristics of different businesses.What' more,combinating it with DNS,our method can distinguish granularity well and achieve a high recognition accuracy.This paper builds a DFI business identification system using these characteristics,and evaluate it by a lot of identification experiments and system analysis.
作者 阳洋 王明森 沈为
机构地区 上海大学通信与信息工程学院
出处 《工业控制计算机》 2017年第7期65-67,共3页 Industrial Control Computer
关键词 流量特征 DFI DNS 业务识别 flow characteristics DFI DNS business identification
分类号 TP181 [自动化与计算机技术—控制理论与控制工程] TP393.06 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献6

二级参考文献62

  • 1Moore AW, Zuev D. Internet traffic classification using Bayesian analysis techniques. In: Proc. of the 2005 ACM SIGMETRICS Int'l Conf. on Measurement and Modeling of Computer Systems, Banff, 2005. 50-60. http://www.cl.cam.ac.uk/-awm22 /publications/moore2005internet.pdf.
  • 2Madhukar A, Williamson C. A longitudinal study of P2P traffic classification. In: Proc. of the 14th IEEE Int'l Syrup. on Modeling, Analysis, and Simulation. Monterey, 2006. http://ieeexplore.ieee.org/xpl/ffeeabs_all.jsp?arnumber=1698549.
  • 3Moore AW, Papagiannaki K. Toward the accurate identification of network applications. In: Dovrolis C, ed. Proc. of the PAM 2005. LNCS 3431, Heidelberg: Springer-Verlag, 2005.41-54.
  • 4Karagiannis T, Papagiannaki K, Faloutsos M. BLINC: Multilevel traffic classification in the dark. In: Proc. of the ACM SIGCOMM. Philadelphia, 2005. 229-240. http://conferences.sigcomm.org/sigcomm/2005/paper-KarPap.pdf.
  • 5Roughan M, Sen S, Spatscheck O, Dutfield N. Class-of-Service mapping for QoS: A statistical signature-based approach to IP traffic classification. In: Proc. of the ACM SIGCOMM Internet Measurement Conf. Taormina, 2004. 135-148. http://www.imconf.net/imc-2004/papers/p 135-roughan.pdf.
  • 6Zuev D, Moore AW. Traffic classification using a statistical approach. In: Dovrolis C, ed. Proc. of the PAM 2005. LNCS 3431, Heidelberg: Springer-Verlag, 2005. 321-324.
  • 7Nguyen T, Armitage G. Training on multiple sub-flows to optimise the use of Machine Learning classifiers in real-world IP networks. In: Proc. of the 31 st IEEE LCN 2006. Tampa, 2006. http://ieeexplore.ieee.org/xpl/freeabs_all.jsp?arnumber=4116573.
  • 8Eerman J, Mahanti A, Arlitt M. Internct traffic identification using machine learning techniques. In: Proc. of the 49th IEEE GLOBECOM. San Francisco, 2006. http://pages.cpsc.ucalgary.ca/-mahanti/papers/globecom06.pdf.
  • 9Erman J, Arlitt M, Mahanti A. Traffic classification using clustering algorithms. In: Proc. of the ACM SIGCOMM Workshop on Mining Network Data (MineNet). Pisa, 2006. http://conferences.sigcomm.org/sigcomm/2006/papers/minenet-01.pdf.
  • 10Bernaille L, Teixeira R, Salamatian K. Early application identification. In: Proc. of the Conf. on Future Networking Technologies 2006 (CoNEXT 2006). Lisboa, 2006. http://portal.acm.org/citation.efm?id=1368445.

共引文献215

同被引文献8

引证文献1

工业控制计算机
2017年 第7期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部