Network Traffic Classification Based on SD Sampling and Hierarchical Ensemble Learning
نویسندگان
چکیده
With the increase in cyber threats recent years, there have been more forms of demand for network security protection measures. Network traffic classification technology is used to adapt dynamic threat environment. However, has a natural unbalanced class distribution problem, and single model leads low accuracy high false-positive rate traditional detection model. Given above two problems, this paper proposes new dataset balancing method named SD sampling based on SMOTE algorithm. Different from algorithm, divides sample into types that are easy difficult classify only balances difficult-to-classify sample, which not overcomes SMOTE’s overgeneralization but also combines idea oversampling undersampling. In addition, two-layer structure combined with XGBoost random forest proposed multiclassification anomalous traffic, since using hierarchical can better minority abnormal traffic. This conducts experiments CICIDS2017 dataset. The results show than 99.70% less 0.34%, indicating models.
منابع مشابه
Hierarchical Real-time Network Traffic Classification Based on ECOC
Classification of network traffic is basic and essential for many network researches and managements. With the rapid development of peer-to-peer (P2P) application using dynamic port disguising techniques and encryption to avoid detection, port-based and simple payload-based network traffic classification methods were diminished. An alternative method based on statistics and machine learning had...
متن کاملRule Learning based on Neural Network Ensemble
Neural network ensemble can significantly improve the generalization ability of neural network based systems. In this paper, a novel rule learning algorithm is proposed, where neural network ensemble acts as a front-end process that generates data for the learning of rules. Experimental results show that the proposed algorithm can generate rules with strong generalization ability.
متن کاملNetwork Traffic Classification based on Unsupervised Approach
The IP network engineering, management and control are highly benefited by Network traffic classification and application identifi¬cation. There are many popular methods available namely port-based and payload-based but they have shown some disadvantages, and the machine learning based method is a potential one. Unsupervised learning deals with a class of problems in which one seeks to determin...
متن کاملA Novel P2P Traffic Identification Model Based on Ensemble Learning
Peer-to-peer (P2P) traffic has occupied major fraction of all internet traffic. Hence, P2P flow identification becomes an important problem for network management. In our work, we propose an ensemble classification approach for P2P traffic identification, which integrates six DTNB(combination of naive Bayes and decision tables) algorithm and dynamic weighted integration method. The proposed P2P...
متن کاملHierarchical Multi-label Classification using Fully Associative Ensemble Learning
Traditional flat classification methods ( e.g. , binary or multi-class classification) neglect the structural information between different classes. In contrast, Hierarchical Multi-label Classification (HMC) considers the structural information embedded in the class hierarchy, and uses it to improve classification performance. In this paper, we propose a local hierarchical ensemble framework fo...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Security and Communication Networks
سال: 2023
ISSN: ['1939-0122', '1939-0114']
DOI: https://doi.org/10.1155/2023/4374385