{"title":"监控不同IP协议下不同操作系统的网络流量","authors":"Chenhuan Liu, Chen Su, Xing Li","doi":"10.1145/3271553.3271599","DOIUrl":null,"url":null,"abstract":"Recently, the booming big data era has brought increasing attention on the network traffic classification problem. To cope with the problem, methods based on port, payload, behavior and machine learning have been proposed since 2000s. However, these methods rely on people's prior knowledge to classify and their accuracy is hardly to be convincing. To solve the problem above, we propose a method through connecting a switch on the host network to mirror the host's network traffic. In this way, network traffic of hosts under different operating systems and different IP protocol configurations can be monitored. We conducted experiments based on three weeks of data measured on a public network. Results show that the traffic of different IP protocols are independent. Comparison with Moore-set shows that our method can classify specific network traffic from different OSes under IPv4, IPv6 and dual stack protocols.","PeriodicalId":414782,"journal":{"name":"Proceedings of the 2nd International Conference on Vision, Image and Signal Processing","volume":"3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-08-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Monitoring Network Traffic of Different OSes in Different IP Protocols\",\"authors\":\"Chenhuan Liu, Chen Su, Xing Li\",\"doi\":\"10.1145/3271553.3271599\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Recently, the booming big data era has brought increasing attention on the network traffic classification problem. To cope with the problem, methods based on port, payload, behavior and machine learning have been proposed since 2000s. However, these methods rely on people's prior knowledge to classify and their accuracy is hardly to be convincing. To solve the problem above, we propose a method through connecting a switch on the host network to mirror the host's network traffic. In this way, network traffic of hosts under different operating systems and different IP protocol configurations can be monitored. We conducted experiments based on three weeks of data measured on a public network. Results show that the traffic of different IP protocols are independent. Comparison with Moore-set shows that our method can classify specific network traffic from different OSes under IPv4, IPv6 and dual stack protocols.\",\"PeriodicalId\":414782,\"journal\":{\"name\":\"Proceedings of the 2nd International Conference on Vision, Image and Signal Processing\",\"volume\":\"3 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-08-27\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 2nd International Conference on Vision, Image and Signal Processing\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3271553.3271599\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2nd International Conference on Vision, Image and Signal Processing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3271553.3271599","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Monitoring Network Traffic of Different OSes in Different IP Protocols
Recently, the booming big data era has brought increasing attention on the network traffic classification problem. To cope with the problem, methods based on port, payload, behavior and machine learning have been proposed since 2000s. However, these methods rely on people's prior knowledge to classify and their accuracy is hardly to be convincing. To solve the problem above, we propose a method through connecting a switch on the host network to mirror the host's network traffic. In this way, network traffic of hosts under different operating systems and different IP protocol configurations can be monitored. We conducted experiments based on three weeks of data measured on a public network. Results show that the traffic of different IP protocols are independent. Comparison with Moore-set shows that our method can classify specific network traffic from different OSes under IPv4, IPv6 and dual stack protocols.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
