FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2912856897> ?p ?o ?g. }

• W2912856897 endingPage "3853" @default.
• W2912856897 startingPage "3843" @default.
• W2912856897 abstract "In recent years, malware with strong concealment uses encrypted protocol to evade detection. Thus, encrypted traffic identification can help security analysts to be more effective in narrowing down those encrypted network traffic. Existing methods are protocol independent, such as statistical-based and machine-learning-based approaches. Statistical-based approaches, however, are confined to payload length and machine-learning-based approaches have a low recognition rate for encrypted traffic using undisclosed protocols. In this paper, we proposed a heuristic statistical testing (HST) approach that combines both statistics and machine learning and has been proved to alleviate their respective deficiencies. We manually selected four randomness tests to extract small payload features for machine learning to improve real-time performances. We also proposed a simple handshake skipping method called HST-R to increase the classification accuracy. We compared our approach with other identification approaches on a testing dataset consisting of traffic that uses two known, two undisclosed, and one custom cryptographic protocols. Experimental results showed that HST-R performs better than other traditional coding-based, entropy-based, and ML-based approaches. We also showed that our handshake skipping method could generalize better for unknown cryptographic protocols. Finally, we also conducted experimental comparisons among different classification algorithms. The results showed that C4.5, with our method, has the highest identification accuracy for secure sockets layer and secure shell traffic." @default.
• W2912856897 created "2019-02-21" @default.
• W2912856897 creator A5012354366 @default.
• W2912856897 creator A5029715489 @default.
• W2912856897 creator A5047181418 @default.
• W2912856897 creator A5057916222 @default.
• W2912856897 creator A5060514022 @default.
• W2912856897 creator A5088661712 @default.
• W2912856897 date "2019-04-01" @default.
• W2912856897 modified "2023-10-18" @default.
• W2912856897 title "A Heuristic Statistical Testing Based Approach for Encrypted Network Traffic Identification" @default.
• W2912856897 cites W126709651 @default.
• W2912856897 cites W1553465615 @default.
• W2912856897 cites W158006909 @default.
• W2912856897 cites W1667023885 @default.
• W2912856897 cites W1752315353 @default.
• W2912856897 cites W1963898916 @default.
• W2912856897 cites W1972721567 @default.
• W2912856897 cites W2025482752 @default.
• W2912856897 cites W2080765376 @default.
• W2912856897 cites W2096674597 @default.
• W2912856897 cites W2098260898 @default.
• W2912856897 cites W2103604224 @default.
• W2912856897 cites W2114337635 @default.
• W2912856897 cites W2125492197 @default.
• W2912856897 cites W2140679274 @default.
• W2912856897 cites W2144098589 @default.
• W2912856897 cites W2144256483 @default.
• W2912856897 cites W2158215699 @default.
• W2912856897 cites W2170018742 @default.
• W2912856897 cites W2179036394 @default.
• W2912856897 cites W2460736843 @default.
• W2912856897 cites W2517389839 @default.
• W2912856897 cites W2743402300 @default.
• W2912856897 cites W2789985949 @default.
• W2912856897 cites W2805949242 @default.
• W2912856897 cites W2962742271 @default.
• W2912856897 doi "https://doi.org/10.1109/tvt.2019.2894290" @default.
• W2912856897 hasPublicationYear "2019" @default.
• W2912856897 type Work @default.
• W2912856897 sameAs 2912856897 @default.
• W2912856897 citedByCount "21" @default.
• W2912856897 countsByYear W29128568972019 @default.
• W2912856897 countsByYear W29128568972020 @default.
• W2912856897 countsByYear W29128568972021 @default.
• W2912856897 countsByYear W29128568972022 @default.
• W2912856897 countsByYear W29128568972023 @default.
• W2912856897 crossrefType "journal-article" @default.
• W2912856897 hasAuthorship W2912856897A5012354366 @default.
• W2912856897 hasAuthorship W2912856897A5029715489 @default.
• W2912856897 hasAuthorship W2912856897A5047181418 @default.
• W2912856897 hasAuthorship W2912856897A5057916222 @default.
• W2912856897 hasAuthorship W2912856897A5060514022 @default.
• W2912856897 hasAuthorship W2912856897A5088661712 @default.
• W2912856897 hasConcept C106301342 @default.
• W2912856897 hasConcept C11413529 @default.
• W2912856897 hasConcept C116834253 @default.
• W2912856897 hasConcept C119857082 @default.
• W2912856897 hasConcept C121332964 @default.
• W2912856897 hasConcept C124101348 @default.
• W2912856897 hasConcept C134066672 @default.
• W2912856897 hasConcept C148730421 @default.
• W2912856897 hasConcept C151319957 @default.
• W2912856897 hasConcept C154945302 @default.
• W2912856897 hasConcept C158379750 @default.
• W2912856897 hasConcept C169988225 @default.
• W2912856897 hasConcept C173801870 @default.
• W2912856897 hasConcept C178489894 @default.
• W2912856897 hasConcept C2778000800 @default.
• W2912856897 hasConcept C31258907 @default.
• W2912856897 hasConcept C33884865 @default.
• W2912856897 hasConcept C41008148 @default.
• W2912856897 hasConcept C59822182 @default.
• W2912856897 hasConcept C62520636 @default.
• W2912856897 hasConcept C86803240 @default.
• W2912856897 hasConceptScore W2912856897C106301342 @default.
• W2912856897 hasConceptScore W2912856897C11413529 @default.
• W2912856897 hasConceptScore W2912856897C116834253 @default.
• W2912856897 hasConceptScore W2912856897C119857082 @default.
• W2912856897 hasConceptScore W2912856897C121332964 @default.
• W2912856897 hasConceptScore W2912856897C124101348 @default.
• W2912856897 hasConceptScore W2912856897C134066672 @default.
• W2912856897 hasConceptScore W2912856897C148730421 @default.
• W2912856897 hasConceptScore W2912856897C151319957 @default.
• W2912856897 hasConceptScore W2912856897C154945302 @default.
• W2912856897 hasConceptScore W2912856897C158379750 @default.
• W2912856897 hasConceptScore W2912856897C169988225 @default.
• W2912856897 hasConceptScore W2912856897C173801870 @default.
• W2912856897 hasConceptScore W2912856897C178489894 @default.
• W2912856897 hasConceptScore W2912856897C2778000800 @default.
• W2912856897 hasConceptScore W2912856897C31258907 @default.
• W2912856897 hasConceptScore W2912856897C33884865 @default.
• W2912856897 hasConceptScore W2912856897C41008148 @default.
• W2912856897 hasConceptScore W2912856897C59822182 @default.
• W2912856897 hasConceptScore W2912856897C62520636 @default.
• W2912856897 hasConceptScore W2912856897C86803240 @default.
• W2912856897 hasFunder F4320321001 @default.
• W2912856897 hasIssue "4" @default.

• next