BitMiner: Bits Mining in Internet Traffic Classification

Proceedings of the 2015 ACM Conference on Special Interest Group on Data Communication Pub Date : 2015-08-17 DOI:10.1145/2785956.2789997

Zhenlong Yuan, Y. Xue, M. Schaar

引用次数: 7

Abstract

Traditionally, signatures used for traffic classification are constructed at the byte-level. However, as more and more data-transfer formats of network protocols and applications are encoded at the bit-level, byte-level signatures are losing their effectiveness in traffic classification. In this poster, we creatively construct bit-level signatures by associating the bit-values with their bit-positions in each traffic flow. Furthermore, we present BitMiner, an automated traffic mining tool that can mine application signatures at the most fine-grained bit-level granularity. Our preliminary test on popular peer-to-peer (P2P) applications, e.g. Skype, Google Hangouts, PPTV, eMule, Xunlei and QQDownload, reveals that although they all have no byte-level signatures, there are significant bit-level signatures hidden in their traffic.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

BitMiner:互联网流量分类中的比特挖掘

传统上，用于流分类的签名是在字节级构造的。然而，随着越来越多的网络协议和应用的数据传输格式采用比特级编码，字节级签名在流分类中的作用正在逐渐减弱。在这张海报中，我们创造性地通过将每个流量中的位值与其位位置相关联来构建位级签名。此外，我们提出了BitMiner，一个自动流量挖掘工具，可以在最细粒度的位级粒度上挖掘应用程序签名。我们对流行的点对点(P2P)应用程序(如Skype、Google Hangouts、PPTV、eMule、迅雷和QQDownload)的初步测试表明，尽管它们都没有字节级签名，但它们的流量中隐藏着重要的比特级签名。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Proceedings of the 2015 ACM Conference on Special Interest Group on Data Communication

自引率

0.00%

发文量

期刊最新文献

Alternative Trust Sources: Reducing DNSSEC Signature Verification Operations with TLS RPKI MIRO: Monitoring and Inspection of RPKI Objects Hopper: Decentralized Speculation-aware Cluster Scheduling at Scale Extreme Data-rate Scheduling for the Data Center Multi-Context TLS (mcTLS): Enabling Secure In-Network Functionality in TLS