Detail publikace

Traffic Extraction and Classification in Network Forensics

PLUSKAL, J. RYŠAVÝ, O.

Originální název

Traffic Extraction and Classification in Network Forensics

Typ

článek ve sborníku mimo WoS a Scopus

Jazyk

angličtina

Originální abstrakt

Network traffic classification is essential for network monitoring, security analysis and also digital forensics. Accurate classification can reduce the amount of information that needs to be analyzed during the investigation. In this paper, we present a study that compares three different algorithms that according to the literature oer high accuracy and acceptable performance. These algorithms are evaluated on their ability to identify traffic classes at application protocol and also network application software levels. Based on experiments, Random forest algorithm gives promising results.

Klíčová slova

network forensics network traffic classification statistical protocol identification

Autoři

PLUSKAL, J.; RYŠAVÝ, O.

Vydáno

11. 10. 2017

Místo

Praha

Strany od

1

Strany do

2

Strany počet

14

URL

https://www.fit.vut.cz/research/publication/11457/

BibTex

@inproceedings{BUT168456,
  author="Jan {Pluskal} and Ondřej {Ryšavý}",
  title="Traffic Extraction and Classification in Network Forensics",
  booktitle="9th International Conference on Digital Forensics & Cyber Crime",
  year="2017",
  pages="1--2",
  address="Praha",
  url="https://www.fit.vut.cz/research/publication/11457/"
}