Self-Learning Network Traffic Classification

Apply

Self-Learning Network Traffic Classification

Journal Title: International Journal for Research in Applied Science and Engineering Technology (IJRASET) - Year 2015, Vol 3, Issue 8

Abstract

Network management is part of traffic engineering and security. The current solutions - Deep Packet Inspection (DPI) and statistical classification rely on the availability of a training set. In case of these there is a cumbersome need to regularly update the signatures. Further their visibility is limited to classes the classifier has been trained for. Unsupervised algorithms have been envisioned as an alternative to automatically identify classes of traffic. To address these issues Unsupervised Self Learning Network Traffic Classification is proposed. It uses unsupervised algorithms along with an adaptive seeding approach to automatically let classes of traffic to emerge, making them identified and labelled. Unlike traditional classifiers, there is no need of a-priori knowledge of neither signatures nor a training set to extract the signatures. Instead, Unsupervised Self Learning Network Traffic Classification automatically groups flows into pure (or homogeneous) clusters using simple statistical features. This label assignment (which is still based on some manual intervention) ensures that class labels can be easily discovered. Furthermore, Unsupervised Self Learning Network Traffic Classification uses an iterative seeding approach which will boost its ability to cope with new protocols and applications. Unlike state-of-art classifiers, the biggest advantage of Unsupervised Self Learning Network Traffic Classification is its ability to discover new protocols and applications in an almost automated fashion.

Authors and Affiliations

Vandana M, Sruthy Manmadhan

Keywords

Traffic classification; clustering; self-seeding; unsupervised machine learning

EP ID EP21170
DOI -
Views 221
Downloads 5