TPCAD:a text-oriented multi-protocol inference approach

ZHAO Yong1; YAO Qiu-lin1; ZHANG Zhi-bin1; GUO Li1; FANG Bin-xing1

Tongxin xuebao (Jan 2009)

TPCAD:a text-oriented multi-protocol inference approach

ZHAO Yong1,
YAO Qiu-lin1,
ZHANG Zhi-bin1,
GUO Li1,
FANG Bin-xing1

Affiliations

ZHAO Yong1
YAO Qiu-lin1
ZHANG Zhi-bin1
GUO Li1
FANG Bin-xing1

Journal volume & issue: Vol. 30
pp. 28 – 35

Abstract

Read online

Protocol inference, which discovers protocol characteristics automatically, is an important problem in traffic classification.An accurate and efficient inference method based on semantic analysis of text traffic was proposed.According to the semantic analysis, the text content of traffic to token sequences was resolved.Then the token sequences based on a similarity comparison criterion on semantic space was clustered.At last the recognition characteristics was extracted from the token sequences that belong to the same protocol.In the experiment, the precision ratio is above 95% for common protocols and the speed can meet the needs of online training and classification.

protocol inference;traffic classification;semantic;clustering

Published in Tongxin xuebao

ISSN: 1000-436X (Print)
Publisher: Editorial Department of Journal on Communications
Country of publisher: China
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: http://www.infocomm-journal.com/txxb/EN/1000-436X/home.shtml

About the journal

Abstract

Keywords