Monitoring and Identification of Abnormal Network Traffic by Different Mathematical Models

Bai, Bing

doi:10.13052/jcsm2245-1439.1153

Cited by 1 publication

(1 citation statement)

References 22 publications

(22 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To address this challenge, [16] proposed a data mining-based network traffic anomaly monitoring system. In another approach, [17] tackled the issue of monitoring and identifying abnormal network traffic by employing mutual information-based feature selection and comparing various mathematical models for classification.…”

Section: Network Traffic Monitoringmentioning

confidence: 99%

Unveiling the Digital Fingerprints: Analysis of Internet attacks based on website fingerprints

Rexha,

Musa,

Vishi

et al. 2023

Preprint

View full text Add to dashboard Cite

Parallel to our physical activities our virtual presence also leaves behind our unique digital fingerprints, while navigating on the Internet. These digital fingerprints have the potential to unveil users' activities encompassing browsing history, utilized applications, and even devices employed during these engagements. Many Internet users tend to use web browsers that provide the highest privacy protection and anonymization such as Tor. The success of such privacy protection depends on Tor feature to anonymize end user IP address and other metadata that constructs the website fingerprint. In this paper, we show that using the newest machine learning algorithms an attacker can deanonymize Tor traffic by applying such techniques. In our experimental framework, we establish a baseline and comparative reference point using a publicly available dataset from Universidad Del Cauca, Colombia. We capture network packets across 11 days, while users navigate specific web pages, recording data in .pcapng format through the Wireshark network capture tool. Excluding extraneous packets, we employ various machine learning algorithms in our analysis. The results show that the Gradient Boosting Machine algorithm delivers the best outcomes in binary classification, achieving an accuracy of 0.8363. In the realm of multi-class classification, the Random Forest algorithm attains an accuracy of 0.6297.

show abstract

Section: Network Traffic Monitoringmentioning

confidence: 99%