论文信息 - Enhancing Application Identification by Means of Sequential Testing

Enhancing Application Identification by Means of Sequential Testing

One of the most important challenges for network administrators is the identification of applications behind the Internet traffic. This identification serves for many purposes as in network security, traffic engineering and monitoring. The classical methods based on standard port numbers or deep packet inspection are unfortunately becoming less and less efficient because of encryption and the utilization of non standard ports. In this paper we come up with an online iterative probabilistic method that identifies applications quickly and accurately by only using the size of packets. Our method associates a configurable confidence level to the port number carried in the transport header and is able to consider a variable number of packets at the beginning of a flow. By verification on real traces we observe that even in the case of no confidence in the port number, a very high accuracy can be obtained for well known applications after few packets were examined.

Chadi Barakat | Mohamad Jaber

[1] Jeffrey Erman,et al. Internet Traffic Identification using Machine Learning , 2006 .

[2] J. Erman,et al. QRP05-4: Internet Traffic Identification using Machine Learning , 2006, IEEE Globecom 2006.

[3] Ian Witten,et al. Data Mining , 2000 .

[4] Oliver Spatscheck,et al. Accurate, scalable in-network identification of p2p traffic using application signatures , 2004, WWW '04.

[5] Renata Teixeira,et al. Early application identification , 2006, CoNEXT '06.

[6] Konstantina Papagiannaki,et al. Toward the Accurate Identification of Network Applications , 2005, PAM.

[7] Michalis Faloutsos,et al. BLINC: multilevel traffic classification in the dark , 2005, SIGCOMM '05.

[8] Maurizio Dusi,et al. Traffic classification through simple statistical fingerprinting , 2007, CCRV.

[9] Andrew W. Moore,et al. Internet traffic classification using bayesian analysis techniques , 2005, SIGMETRICS '05.