Only Header: a reliable encrypted traffic classification framework without privacy risk
نویسندگان
چکیده
Encrypted traffic classification plays a critical role in network management, providing appropriate Quality-of-Service and Network Intrusion Detection. Conventional port-based deep packet inspection approaches cannot classify encrypted effectively. Methods based on machine learning can by extracting statistical features of the flow. However, they require manual extraction features. Recent studies show that are compelling for task. They automatically learn raw without feature extraction. these still take payload as model input, which may cause privacy risks. Besides, massive causes great storage pressure classification. In this paper, we propose reliable framework only using flow header called Only Header, avoids risks achieves lightweight storage. Firstly, introduce twice segmentation mechanism to dilute interference increase weight effective traffic. Then, use capsule neural networks (CapsNet) spatial byte header. The Header’s effectiveness is compared with other methods two public datasets, including ISCX VPN-nonVPN Tor-nonTor datasets. experimental results demonstrate Header outperforms state-of-the-art methods.
منابع مشابه
Classification of encrypted traffic for applications based on statistical features
Traffic classification plays an important role in many aspects of network management such as identifying type of the transferred data, detection of malware applications, applying policies to restrict network accesses and so on. Basic methods in this field were using some obvious traffic features like port number and protocol type to classify the traffic type. However, recent changes in applicat...
متن کاملA survey of methods for encrypted traffic classification and analysis
With the widespread use of encrypted data transport network traffic encryption is becoming a standard nowadays. This presents a challenge for traffic measurement, especially for analysis and anomaly detection methods which are dependent on the type of network traffic. In this paper, we survey existing approaches for classification and analysis of encrypted traffic. First, we describe the most w...
متن کاملRFC 6904 Encrypted SRTP Header Extensions
The Secure Real-time Transport Protocol (SRTP) provides authentication, but not encryption, of the headers of Real-time Transport Protocol (RTP) packets. However, RTP header extensions may carry sensitive information for which participants in multimedia sessions want confidentiality. This document provides a mechanism, extending the mechanisms of SRTP, to selectively encrypt RTP header extensio...
متن کاملSemi-supervised Encrypted Traffic Classification Using Composite Features Set
Many network management tasks such as managing bandwidth budget and ensuring quality of service objectives rely on accurate classification of network traffic. But the statistical features of encrypted traffics are not stable and do not contain sufficient information for classification all the time. Some applications support multiple protocols, and the behaviors of these applications are complic...
متن کاملEncrypted Internet Traffic Classification Method based on Host Behavior
Accurate network traffic classification plays important roles in many areas such as traffic engineering, QoS and intrusion detection etc. Encrypted Peer-to-Peer (P2P) applications have dramatically grown in popularity over the past few years, and now constitute a significant share of the total traffic in many networks. To solve the drawback of the previous classification scheme for encrypted ne...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Soft Computing
سال: 2022
ISSN: ['1433-7479', '1432-7643']
DOI: https://doi.org/10.1007/s00500-022-07450-9