Improved KNN Algorithm for Fine-Grained Classification of Encrypted Network Flow

Ma, Chencheng; Du, Xuehui; Cao, Lifeng

doi:10.3390/electronics9020324

Cited by 32 publications

(18 citation statements)

References 60 publications

(81 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…These distance metrics are expressed by Equations ( 1)-(4), respectively. The most popular distance metric is the Minkowski distance [59]. Algorithm 1 presented below defines the basic KNN classifier algorithm steps in detail [60].…”

Section: K-nearest Neighborsmentioning

confidence: 99%

On-line Detection and Classification of PMSM Stator Winding Faults Based on Stator Current Symmetrical Components Analysis and the KNN Algorithm

Pietrzak

Wolkiewicz

2021

Electronics

View full text Add to dashboard Cite

The significant advantages of permanent magnet synchronous motors, such as very good dynamic properties, high efficiency and power density, have led to their frequent use in many drive systems today. However, like other types of electric motors, they are exposed to various types of faults, including stator winding faults. Stator winding faults are mainly inter-turn short circuits and are among the most common faults in electric motors. In this paper, the possibility of using the spectral analysis of symmetrical current components to extract fault symptoms and the machine-learning-based K-Nearest Neighbors (KNN) algorithm for the detection and classification of the PMSM stator winding fault is presented. The impact of the key parameters of this classifier on the effectiveness of stator winding fault detection and classification is presented and discussed in detail, which has not been researched in the literature so far. The proposed solution was verified experimentally using a 2.5 kW PMSM, the construction of which was specially prepared for carrying out controlled inter-turn short circuits.

show abstract

Section: K-nearest Neighborsmentioning

confidence: 99%

On-line Detection and Classification of PMSM Stator Winding Faults Based on Stator Current Symmetrical Components Analysis and the KNN Algorithm

Pietrzak

Wolkiewicz

2021

Electronics

View full text Add to dashboard Cite

show abstract

“…Stergiopoulos et al [14] conducted comparative experiments by using seven different supervised learning algorithms such as k-nearest neighbors (KNN), Classification And Regression Trees (CART), and Naïve Bayes to detect malicious traffic from a dataset with more than one encryption protocol. Ma et al [32] proposed an enhanced KNN algorithm to train an encrypted traffic detection model, which enhances the KNN distance calculation. For unsupervised Learning, Chen et al [13] proposed an improved density peaks clustering algorithm to enhance the accuracy and efficiency of encrypted malicious traffic detection.…”

Section: Preliminariesmentioning

confidence: 99%

“…Their experiments indicate that the small number of features can achieve similar accuracy as compared to other existing methods. Many research [13][20] [32] are designed to use machine selection on the optimal features chosen from a large set of extracted features without human intervention. On the other hand, [9][10] [37][44] [47] directly used raw data as the deep learning methods input.…”

Section: Feature Set Selectionmentioning

confidence: 99%

Machine Learning for Encrypted Malicious Traffic Detection: Approaches, Datasets and Comparative Study

Wang,

Fok,

Thing

2022

Preprint

View full text Add to dashboard Cite

As people's demand for personal privacy and data security becomes a priority, encrypted traffic has become mainstream in the cyber world. However, traffic encryption is also shielding malicious and illegal traffic introduced by adversaries, from being detected. This is especially so in the post-COVID-19 environment where malicious traffic encryption is growing rapidly. Common security solutions that rely on plain payload content analysis such as deep packet inspection are rendered useless. Thus, machine learning based approaches have become an important direction for encrypted malicious traffic detection. In this paper, we formulate a universal framework of machine learning based encrypted malicious traffic detection techniques and provided a systematic review. Furthermore, current research adopts different datasets to train their models due to the lack of well-recognized datasets and feature sets. As a result, their model performance cannot be compared and analyzed reliably. Therefore, in this paper, we analyse, process and combine datasets from 5 different sources to generate a comprehensive and fair dataset to aid future research in this field. On this basis, we also implement and compare 10 encrypted malicious traffic detection algorithms. We then discuss challenges and propose future directions of research.

show abstract

“…The literature [18] proposed a multi-level P2P traffic classification technique using C4.5 decision trees and statistical features of flows for P2P classification, which was also applicable to encrypted traffic. Similarly, there is literature [19,20] that used machine learning (KNN, SVM) for fine-grained classification of encrypted traffic classification. However, the machine learning-based methods relies heavily on effective feature extraction and selection, which is a waste resource for traffic feature extraction.…”

Section: Related Workmentioning

confidence: 99%

“…To better analyze the performance of ICLSTM on encrypted traffic service identification, we compare with the results of other methods proposed in recent studies. Such as 1DCNN, Text Convolution [39] and SAE [19], and so forth. The results are shown in the following table.…”

Section: Model Comparisonmentioning

confidence: 99%

ICLSTM: Encrypted Traffic Service Identification Based on Inception-LSTM Neural Network

Luktarhan

Ding

et al. 2021

Symmetry

View full text Add to dashboard Cite

The wide application of encryption technology has made traffic classification gradually become a major challenge in the field of network security. Traditional methods such as machine learning, which rely heavily on feature engineering and others, can no longer fully meet the needs of encrypted traffic classification. Therefore, we propose an Inception-LSTM(ICLSTM) traffic classification method in this paper to achieve encrypted traffic service identification. This method converts traffic data into common gray images, and then uses the constructed ICLSTM neural network to extract key features and perform effective traffic classification. To alleviate the problem of category imbalance, different weight parameters are set for each category separately in the training phase to make it more symmetrical for different categories of encrypted traffic, and the identification effect is more balanced and reasonable. The method is validated on the public ISCX 2016 dataset, and the results of five classification experiments show that the accuracy of the method exceeds 98% for both regular encrypted traffic service identification and VPN encrypted traffic service identification. At the same time, this deep learning-based classification method also greatly simplifies the difficulty of traffic feature extraction work.

show abstract

Improved KNN Algorithm for Fine-Grained Classification of Encrypted Network Flow

Cited by 32 publications

References 60 publications

On-line Detection and Classification of PMSM Stator Winding Faults Based on Stator Current Symmetrical Components Analysis and the KNN Algorithm

On-line Detection and Classification of PMSM Stator Winding Faults Based on Stator Current Symmetrical Components Analysis and the KNN Algorithm

Machine Learning for Encrypted Malicious Traffic Detection: Approaches, Datasets and Comparative Study

ICLSTM: Encrypted Traffic Service Identification Based on Inception-LSTM Neural Network

Contact Info

Product

Resources

About