Network Supervision via Protocol Identification in the Network

Thumbnail Image
Files
eeict-general-470-474.pdf(594.9 KB)
Date
2022
Authors
Holasova, E.
Kuchar, K.
Fujdiak, R.
ORCID
Advisor
Referee
Mark
Journal Title
Journal ISSN
Volume Title
Publisher
Vysoké učení technické v Brně, Fakulta elektrotechniky a komunikačních technologií
Abstract
This paper is focused on a comparison of ML (Machine Learning) and DNN (Deep Neural Network) techniques in protocol recognition to support network supervision for further proper handling, e.g., detection of a security incident. The DNN approach uses 11 layers and the ML approach is consisting of 28 mutually different predictive models. Both techniques were performed/compared on a freely accessible dataset containing browsing pcap files for further comparison, e.g., with other approaches. The predictive multiclass models were trained (fitted) to be capable of detecting five network protocols. Both approaches were compared by the achieved accuracy (based on testing and validating data), learning time, and predicting the time point of view. Using the ML approach, we were able to recognize the protocol with an accuracy of 1 and using DNN with an accuracy of 0.97.
Description
Keywords
IT protocols, neural networks, machine learning, protocol recognition
Citation
Proceedings I of the 28st Conference STUDENT EEICT 2022: General papers. s. 470-474. ISBN 978-80-214-6029-4
https://conf.feec.vutbr.cz/eeict/index/pages/view/ke_stazeni
Document type
Peer-reviewed
Document version
Published version
Date of access to the full text
Language of document
en
Study field
Comittee
Date of acceptance
Defence
Result of defence
Document licence
© Vysoké učení technické v Brně, Fakulta elektrotechniky a komunikačních technologií
DOI
URI
http://hdl.handle.net/11012/209281
Collections
Student EEICT 2022
Citace PRO