文章基本信息

标题：The Effectiveness Study of ML-based Methods for Protocol Identification in Different Network Environments
本地全文：下载
作者：Zhang Luoshi ; Xue Yibo ; Wang Dawei 等
期刊名称：International Journal of Future Generation Communication and Networking
印刷版ISSN：2233-7857
出版年度：2015
卷号：8
期号：2
页码：213-224
DOI：10.14257/ijfgcn.2015.8.2.01
出版社：SERSC
摘要：Due to the wide use of encrypted protocols and random ports, traditional methods that based on port number or packet payload have gradually lose their effectiveness. To address this issue, new methods that based on machine learning techniques become the research hotspots. With many further studies, some research institutions show that ML- based protocol identification methods can generally achieve over 95% accuracy. However, different from most research studies, industry claims that ML-based techniques are hardly to be deployed for practical use due to their high false positives and false negatives. In this paper, different Machine Learning techniques are evaluated for the actual accuracy under different network environments, and a variety of features are tested on different encrypted protocols. The results show that the identification accuracy will go down due to the changed network scale and network environment while the same ML- based models are used under different network environments, and the choices among different Machine Learning techniques, protocol types or statistical features are not critical.
关键词：Protocol Identification; Traffic Classification; Machine Learning; Accuracy