Entropy (Jun 2024)

Utilizing TabNet Deep Learning for Elephant Flow Detection by Analyzing Information in First Packet Headers

  • Bartosz Kądziołka,
  • Piotr Jurkiewicz,
  • Robert Wójcik,
  • Jerzy Domżał

DOI
https://doi.org/10.3390/e26070537
Journal volume & issue
Vol. 26, no. 7
p. 537

Abstract

Read online

Rapid and precise detection of significant data streams within a network is crucial for efficient traffic management. This study leverages the TabNet deep learning architecture to identify large-scale flows, known as elephant flows, by analyzing the information in the 5-tuple fields of the initial packet header. The results demonstrate that employing a TabNet model can accurately identify elephant flows right at the start of the flow and makes it possible to reduce the number of flow table entries by up to 20 times while still effectively managing 80% of the network traffic through individual flow entries. The model was trained and tested on a comprehensive dataset from a campus network, demonstrating its robustness and potential applicability to varied network environments.

Keywords