Network traffic signature generation mechanism using principal component analysis

Huang, Xiaotao; Wu, Jun; Ma, Yan

doi:10.1109/cc.2013.6674214

Cited by 5 publications

(4 citation statements)

References 9 publications

(19 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Besides, Table 4 in general, summarizes the superiority of the proposed method, as an approach capable of identifying both, an application and its individual services. [18] 2012 ✓ (Unnamed) X ✓ X M. Cheng et al [20] 2013 ✓ (Unnamed) X ✓ X FlowAntEater [21] 2013 ✓ (FlowAntEater) ✓ (SSMA) ✓ X S. Yoon et al [24] 2014 ✓ (Unnamed) X ✓ X H. Min An et al [27] 2015 ✓ (Unnamed) X ✓ X SigBox [28] 2017…”

Section: Analytic Comparison Of the Proposed Approachmentioning

confidence: 99%

“…DSA Biometric Signatures for Internet-based applications Polygraph [13] 2005 BGA Signatures for Polymorphic worms LASER [14] 2008 LCS Internet application identification AutoSig [15] 2009 ASMA Applications signatures generation R. Perdisci et al [16] 2010 BCA HTTP malware signatures generation Zhanyi Wang [17] 2012 ANN & DL Network traffic identification Y. Wang et al [18] 2012 SAA Automatic signature generation FIRMA [19] 2013 LCS Generation of network signatures for malware M. Cheng et al [20] 2013 PCA Automatic signature extraction FlowAntEater [21] 2013 K-means & SSMA Generation and evaluation of applications signatures J. Tharp et al [22] 2013 Heuristics Reconciliation of multiple matching Hwan-Hee Kim & Min-Jung Choi [23] 2013…”

mentioning

confidence: 99%

“…This approach involves four procedures, pre-processing to extract application session payload, tokenization to find common substrings and incorporate position constraints, multiple sequence alignment to find common subsequences, and signature construction to transform the results into regular expression. M. Cheng et al [20], proposes an automatic signature extraction mechanism using Principal Component Analysis (PCA) technology to automatically extract signatures. The signatures extracted by this method are expressed in the form of serial consistent sequences constructed by principal components.…”

mentioning

confidence: 99%

See 2 more Smart Citations

Automatic Payload Signature Generation for Accurate Identification of Internet Applications and Application Services

2018

KSII TIIS

View full text Add to dashboard Cite

The diversity and fast growth of Internet traffic volume are highly influenced by mobile and computer applications being developed. Moreover, the developed applications are too dynamic to be identified and monitored by network administrators. Several approaches have been proposed to identify network applications, however, are still not robust enough to identify modern applications. This paper proposes both, TSA (Traffic collection, Signature generation and Applications identification) system and a derived algorithm so called CSP (Contiguous Sequential Patterns) to identify applications for management and security in IP networks. The major focus of this paper is the CSP algorithm which is automated in two modules (Signature generation and Applications identification) of the proposed system. The proposed CSP algorithm generates DNA-like unique signatures capable of identifying applications and their individual services. In this paper, we show that the algorithm is suitable for generating efficient signatures to identify applications and application services in high accuracy.

show abstract

Section: Analytic Comparison Of the Proposed Approachmentioning

confidence: 99%

mentioning

confidence: 99%

mentioning

confidence: 99%

See 1 more Smart Citation

Automatic Payload Signature Generation for Accurate Identification of Internet Applications and Application Services

2018

KSII TIIS

View full text Add to dashboard Cite

show abstract

“…The basic capacity refers to the maximum traffic permitted of one lane's section in a certain period of time (taking 15min or 1 h) under ideal road and traffic control conditions [7]. The calculation formula by the headway time is defined as follow.…”

Section: Supply Characteristics Of Freewaymentioning

confidence: 99%

Research on Integrated Scale Prediction of Freeway and Expressway in Metropolitan Area

Zhang¹,

Guo²,

Xu³

2014

AMM

View full text Add to dashboard Cite

Freeway and expressway are the main supporters for the long and fast travel demand in metropolitan area, which play the vital roles in urban transportation system, producing huge transport efficiency. In this context, the integration of both in planning and construction is one of the important measures to alleviate the urban traffic problem. Specifically, the following question should be focused on: How to predict the scale of them. In this paper, based on demand analyzing and supply characteristics of freeway and expressway system, a supply-demand balance method for predicting the integrated scale of freeway and expressway was conducted, and the supply-demand balance model was established. Finally, an applied research was carried out as an example in Zhenjiang metropolitan area.

show abstract

A Novel Approach to Deep Packet Inspection for Intrusion Detection

Parvat

Chandra

2015

Procedia Computer Science

View full text Add to dashboard Cite

Network traffic signature generation mechanism using principal component analysis

Cited by 5 publications

References 9 publications

Automatic Payload Signature Generation for Accurate Identification of Internet Applications and Application Services

Automatic Payload Signature Generation for Accurate Identification of Internet Applications and Application Services

Research on Integrated Scale Prediction of Freeway and Expressway in Metropolitan Area

A Novel Approach to Deep Packet Inspection for Intrusion Detection

Contact Info

Product

Resources

About