Cover Image

Online traffic classification for malicious flows using efficient machine learning techniques

The rapid network technology growth causing various network problems, attacks are becoming more sophisticated than defenses. In this paper, we proposed traffic classification by using machine learning technique, and statistical flow features such as five tuples for the training dataset. A rulebased...

Full description

Saved in:
Bibliographic Details
Main Authors: Chan, Y. Y., Ismail, I., Khammas, B. M.
Format: Article
Language:English
Published: Universitas Ahmad Dahlan 2021
Subjects:
TK Electrical engineering. Electronics Nuclear engineering
Online Access:http://eprints.utm.my/id/eprint/94869/1/ChanYingYenn2021_OnlineTrafficClassification.pdf
http://eprints.utm.my/id/eprint/94869/
http://dx.doi.org/10.12928/TELKOMNIKA.v19i4.20402
Tags: Add Tag
No Tags, Be the first to tag this record!
id my.utm.94869
record_format eprints
spelling my.utm.948692022-04-29T21:54:50Z http://eprints.utm.my/id/eprint/94869/ Online traffic classification for malicious flows using efficient machine learning techniques Chan, Y. Y. Ismail, I. Khammas, B. M. TK Electrical engineering. Electronics Nuclear engineering The rapid network technology growth causing various network problems, attacks are becoming more sophisticated than defenses. In this paper, we proposed traffic classification by using machine learning technique, and statistical flow features such as five tuples for the training dataset. A rulebased system, Snort is used to identify the severe harmfulness data packets and reduce the training set dimensionality to a manageable size. Comparison of performance between training dataset that consists of all priorities malicious flows with only has priority 1 malicious flows are done. Different machine learning (ML) algorithms performance in terms of accuracy and efficiency are analyzed. Results show that Naïve Bayes achieved accuracy up to 99.82% for all priorities while 99.92% for extracted priority 1 of malicious flows training dataset in 0.06 seconds and be chosen to classify traffic in real-time process. It is demonstrated that by taking just five tuples information as features and using Snort alert information to extract only important flows and reduce size of dataset is actually comprehensive enough to supply a classifier with high efficiency and accuracy which can sustain the safety of network. Universitas Ahmad Dahlan 2021 Article PeerReviewed application/pdf en http://eprints.utm.my/id/eprint/94869/1/ChanYingYenn2021_OnlineTrafficClassification.pdf Chan, Y. Y. and Ismail, I. and Khammas, B. M. (2021) Online traffic classification for malicious flows using efficient machine learning techniques. Telkomnika (Telecommunication Computing Electronics and Control), 19 (4). ISSN 1693-6930 http://dx.doi.org/10.12928/TELKOMNIKA.v19i4.20402 DOI: 10.12928/TELKOMNIKA.v19i4.20402
institution Universiti Teknologi Malaysia
building UTM Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Teknologi Malaysia
content_source UTM Institutional Repository
url_provider http://eprints.utm.my/
language English
topic TK Electrical engineering. Electronics Nuclear engineering
spellingShingle TK Electrical engineering. Electronics Nuclear engineering
Chan, Y. Y.
Ismail, I.
Khammas, B. M.
Online traffic classification for malicious flows using efficient machine learning techniques
description The rapid network technology growth causing various network problems, attacks are becoming more sophisticated than defenses. In this paper, we proposed traffic classification by using machine learning technique, and statistical flow features such as five tuples for the training dataset. A rulebased system, Snort is used to identify the severe harmfulness data packets and reduce the training set dimensionality to a manageable size. Comparison of performance between training dataset that consists of all priorities malicious flows with only has priority 1 malicious flows are done. Different machine learning (ML) algorithms performance in terms of accuracy and efficiency are analyzed. Results show that Naïve Bayes achieved accuracy up to 99.82% for all priorities while 99.92% for extracted priority 1 of malicious flows training dataset in 0.06 seconds and be chosen to classify traffic in real-time process. It is demonstrated that by taking just five tuples information as features and using Snort alert information to extract only important flows and reduce size of dataset is actually comprehensive enough to supply a classifier with high efficiency and accuracy which can sustain the safety of network.
format Article
author Chan, Y. Y.
Ismail, I.
Khammas, B. M.
author_facet Chan, Y. Y.
Ismail, I.
Khammas, B. M.
author_sort Chan, Y. Y.
title Online traffic classification for malicious flows using efficient machine learning techniques
title_short Online traffic classification for malicious flows using efficient machine learning techniques
title_full Online traffic classification for malicious flows using efficient machine learning techniques
title_fullStr Online traffic classification for malicious flows using efficient machine learning techniques
title_full_unstemmed Online traffic classification for malicious flows using efficient machine learning techniques
title_sort online traffic classification for malicious flows using efficient machine learning techniques
publisher Universitas Ahmad Dahlan
publishDate 2021
url http://eprints.utm.my/id/eprint/94869/1/ChanYingYenn2021_OnlineTrafficClassification.pdf
http://eprints.utm.my/id/eprint/94869/
http://dx.doi.org/10.12928/TELKOMNIKA.v19i4.20402
_version_ 1732945404092219392
score 13.211869

Similar Items