Survey of encrypted malicious traffic detection  based on deep learning

ZHAI Mingfang, ZHANG Xingming, ZHAO Bo

doi:10.11959/j.issn.2096-109x.2020034

网络与信息安全学报 (Jun 2020)

Survey of encrypted malicious traffic detection based on deep learning

ZHAI Mingfang, ZHANG Xingming, ZHAO Bo

Affiliations

ZHAI Mingfang, ZHANG Xingming, ZHAO Bo: National Digital Switching System Engineering and Technological Research Center, Zhengzhou 450002, China

DOI: https://doi.org/10.11959/j.issn.2096-109x.2020034
Journal volume & issue: Vol. 6, no. 3
pp. 59 – 70

Abstract

Read online

With the increasing awareness of network security, encrypted communication dominates and encrypted traffic grows rapidly. Traffic encryption, while protecting privacy, also masks illegal attempts and changes the form of threats. As one of the most important branch of machine learning, deep learning performs well in traffic classification. For several years, research on deep-learning based intrusion detection has been deepened and achieved good results. The steps of encrypted malicious traffic detection were introduced to be a general detection framework model named “six-step method”. Then, discussion and induction of data processing and detection algorithms were carried out combined with this model. Both advantages and disadvantages of various algorithm models were given as well. Finally, future research directions were pointed out with a view to providing assistance for further research.

Published in 网络与信息安全学报

ISSN: 2096-109X (Print)
Publisher: POSTS&TELECOM PRESS Co., LTD
Country of publisher: China
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: http://www.infocomm-journal.com/cjnis/CN/2096-109X/home.shtml

About the journal

Abstract

Keywords