Skip to main content
SpringerLink
Log in

Using of Time Characteristics in Data Flow for Traffic Classification

  • Conference paper
Managing the Dynamics of Networks and Services (AIMS 2011)

Part of the book series: Lecture Notes in Computer Science ((LNCCN,volume 6734))

Abstract

This paper describes a protocol detection using statistic information about a flow extended by packet sizes and time characteristics, which consist of packet inter-arrival times. The most common way of network traffic classification is a deep packet inspection (DPI). Our approach deals with the DPI disadvantage in power consumption using aggregated IPFIX data instead of looking into packet content. According to our previous experiments, we have found that applications have their own behavioral pattern, which can be used for the applications detection. With a respect to current state of development, we mainly present the idea, the results which we have achieved so far and of our future work.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Bernaille, L., Teixeira, R., Salamatian, K.: Early Application Identification. In: ADETTI/ISCTE CoNEXT Conference, Lisboa, Portugal (2006)

    Google Scholar 

  2. Deza, M.M., Deza, E.: Encyclopedia of Distances. Springer, Heidelberg (2009)

    Book  MATH  Google Scholar 

  3. Erman, J., Arlitt, M., Mahanti, A.: Traffic classification using clustering algorithms. SIGCOMM (2006)

    Google Scholar 

  4. Heyer, L.J., Kruglyak, S., Yooseph, S.: Exploring expression data: Identification and analysis of coexpressed genes. Genome Research 9(11), 1106–1115 (1999)

    Article  Google Scholar 

  5. Hjelmvik, E., John, W.: Breaking and Improving Protocol Obfuscation, Technical Report No: 2010-05, Department of Computer Science and Engineering, Chalmers University of Technology, Gothenburg, Sweden (2010)

    Google Scholar 

  6. Internet Assigned Numbers Authority (IANA), http://www.iana.org/assignments/port-numbers

  7. Karagiannis, T., Papagiannaki, K., Faloutsos, M.: Blinc multilevel traffic classification in the dark. SIGCOMM (2005)

    Google Scholar 

  8. Liberouter, http://www.liberouter.org/

  9. MacQueen, J.B.: Some methods for classification and analysis of multivariate observations. In: Proceedings of 5-th Berkeley Symposium on Mathematical Statistics and Probability, pp. 281–297. University of California Press, Berkeley (1967)

    Google Scholar 

  10. Netflow Sensor (NfSen), http://nfsen.sourceforge.net/

Download references

Author information

Authors and Affiliations

  1. Institute of Computer Science, Masaryk University, Botanicka 68a, 62100, Brno, Czech Republic

    Pavel Piskac & Jiri Novotny

Authors
  1. Pavel Piskac
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Jiri Novotny
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Ecole Supérieure d’Informatique et Applications de Lorraine, LORIA-INRIA Lorraine, Université Henri Poincaré Nancy 1, 615 Rue du Jardin Botanique, 54602, Villers-lès-Nancy, France

    Isabelle Chrisment  & Rémi Badonnel  & 

  2. Computer Science Department, Tufts University, 161 College Avenue, 02155, Medford, MA, USA

    Alva Couch

  3. Institut für Informatik (IFI), Universität Zürich, Binzmühlestraße 14, 8050, Zürich, Switzerland

    Martin Waldburger

Rights and permissions

Reprints and permissions

Copyright information

© 2011 IFIP International Federation for Information Processing

About this paper

Cite this paper

Piskac, P., Novotny, J. (2011). Using of Time Characteristics in Data Flow for Traffic Classification. In: Chrisment, I., Couch, A., Badonnel, R., Waldburger, M. (eds) Managing the Dynamics of Networks and Services. AIMS 2011. Lecture Notes in Computer Science, vol 6734. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-21484-4_21

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-21484-4_21

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-21483-7

  • Online ISBN: 978-3-642-21484-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation