Bo Zhang, Yangyang Guan, Wenjia Niu, Jianlong Tan, Z. Mao
{"title":"一种用于NAT主机分析的混合分组聚类方法","authors":"Bo Zhang, Yangyang Guan, Wenjia Niu, Jianlong Tan, Z. Mao","doi":"10.1109/ICCSN.2015.7296198","DOIUrl":null,"url":null,"abstract":"For a number of reasons, including the shortage of IPv4 addresses, many hosts are connected to the Internet through NAT devices. NAT devices effectively anonymize the origin of communication traffic, and remove many identifying features, which makes it difficult to isolate web traffic into mutually disjoint same-host sets called packet groups. However, ISPs or network supervisors can do product suggestions, targeted advertising, and online criminal detection by analyzing the packet group of one host. In this paper, we provide a hybrid packet clustering approach that can cluster NAT host's packets into packet groups. Our hybrid approach could group an NAT host's traffic from visiting different websites and would not suffer from bad network communications or anonymizing behavior of NAT devices. We use our isolating method on datasets obtained from two local area networks and both of them can get good results that accuracy is more than 90% and coverage is more than 50%.","PeriodicalId":319517,"journal":{"name":"2015 IEEE International Conference on Communication Software and Networks (ICCSN)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-06-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"A hybrid packet clustering approach for NAT host analysis\",\"authors\":\"Bo Zhang, Yangyang Guan, Wenjia Niu, Jianlong Tan, Z. Mao\",\"doi\":\"10.1109/ICCSN.2015.7296198\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"For a number of reasons, including the shortage of IPv4 addresses, many hosts are connected to the Internet through NAT devices. NAT devices effectively anonymize the origin of communication traffic, and remove many identifying features, which makes it difficult to isolate web traffic into mutually disjoint same-host sets called packet groups. However, ISPs or network supervisors can do product suggestions, targeted advertising, and online criminal detection by analyzing the packet group of one host. In this paper, we provide a hybrid packet clustering approach that can cluster NAT host's packets into packet groups. Our hybrid approach could group an NAT host's traffic from visiting different websites and would not suffer from bad network communications or anonymizing behavior of NAT devices. We use our isolating method on datasets obtained from two local area networks and both of them can get good results that accuracy is more than 90% and coverage is more than 50%.\",\"PeriodicalId\":319517,\"journal\":{\"name\":\"2015 IEEE International Conference on Communication Software and Networks (ICCSN)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-06-06\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 IEEE International Conference on Communication Software and Networks (ICCSN)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICCSN.2015.7296198\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 IEEE International Conference on Communication Software and Networks (ICCSN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCSN.2015.7296198","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
A hybrid packet clustering approach for NAT host analysis
For a number of reasons, including the shortage of IPv4 addresses, many hosts are connected to the Internet through NAT devices. NAT devices effectively anonymize the origin of communication traffic, and remove many identifying features, which makes it difficult to isolate web traffic into mutually disjoint same-host sets called packet groups. However, ISPs or network supervisors can do product suggestions, targeted advertising, and online criminal detection by analyzing the packet group of one host. In this paper, we provide a hybrid packet clustering approach that can cluster NAT host's packets into packet groups. Our hybrid approach could group an NAT host's traffic from visiting different websites and would not suffer from bad network communications or anonymizing behavior of NAT devices. We use our isolating method on datasets obtained from two local area networks and both of them can get good results that accuracy is more than 90% and coverage is more than 50%.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
