Identification of Abnormal Network Traffic Using Support Vector Machine
| Title | Identification of Abnormal Network Traffic Using Support Vector Machine |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Kong, L., Huang, G., Wu, K. |
| Conference Name | 2017 18th International Conference on Parallel and Distributed Computing, Applications and Technologies (PDCAT) |
| Keywords | composability, feature extraction, Kernel, machine learning, machine learning algorithms, Metrics, pubcrawl, resilience, Resiliency, Support vector machines, SVM, Traffic identification, Training, Training data |
| Abstract | Network traffic identification has been a hot topic in network security area. The identification of abnormal traffic can detect attack traffic and helps network manager enforce corresponding security policies to prevent attacks. Support Vector Machines (SVMs) are one of the most promising supervised machine learning (ML) algorithms that can be applied to the identification of traffic in IP networks as well as detection of abnormal traffic. SVM shows better performance because it can avoid local optimization problems existed in many supervised learning algorithms. However, as a binary classification approach, SVM needs more research in multiclass classification. In this paper, we proposed an abnormal traffic identification system(ATIS) that can classify and identify multiple attack traffic applications. Each component of ATIS is introduced in detail and experiments are carried out based on ATIS. Through the test of KDD CUP dataset, SVM shows good performance. Furthermore, the comparison of experiments reveals that scaling and parameters has a vital impact on SVM training results. |
| URL | https://ieeexplore.ieee.org/document/8327102/ |
| DOI | 10.1109/PDCAT.2017.00054 |
| Citation Key | kong_identification_2017 |