Sniffing Detection Based on Network Traffic Probing and Machine Learning

被引：10

作者：

Gregorczyk, Marcin ^{[1
]}

Zorawski, Piotr ^{[1
]}

Nowakowski, Piotr ^{[1
]}

Cabaj, Krzysztof ^{[2
]}

Mazurczyk, Wojciech ^{[2
]}

机构：

[1] Warsaw Univ Technol, Inst Telecommun, PL-00665 Warsaw, Poland

[2] Warsaw Univ Technol, Inst Comp Sci, PL-00665 Warsaw, Poland

来源：

IEEE ACCESS | 2020年 / 8卷

基金：

欧盟地平线“2020”;

关键词：

Security; Machine learning; Protocols; Tools; Internet; Software; AI; artificial intelligence; ML; machine learning; network security; sniffing; threat detection;

D O I：

10.1109/ACCESS.2020.3016076

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Cyber attacks are on the rise and each day cyber criminals are developing more and more sophisticated methods to compromise the security of their targets. Sniffing is one of the most important techniques that enables the attacker to collect information on the vulnerabilities of the devices, protocols and applications that can be exploited within the targeted network. It relies mainly on passively analyzing the traffic exchanged within the network, and due to its nature, such an activity is difficult to discover. That is why, in this article, we first revisit existing techniques and tools that can be used to perform sniffing as well as the corresponding mitigation methods. Based on this background, we propose a novel measurement-based detection method that infers whether the sniffing software is active on the suspected machine by network traffic probing and machine learning techniques. The presented experimental results prove that the proposed solution is effective.

引用

页码：149255 / 149269

页数：15

共 50 条

[1] Intrusion Detection using Network Traffic Profiling and Machine Learning for IoT
Rose, Joseph R.
Swann, Matthew
Bendiab, Gueltoum
Shiaeles, Stavros
Kolokotronis, Nicholas
PROCEEDINGS OF THE 2021 IEEE 7TH INTERNATIONAL CONFERENCE ON NETWORK SOFTWARIZATION (NETSOFT 2021): ACCELERATING NETWORK SOFTWARIZATION IN THE COGNITIVE AGE, 2021, : 409 - 415
[2] Evaluation of Machine Learning Algorithms for Detection of Malicious Traffic in SCADA Network
Rajesh, L.
Satyanarayana, Penke
JOURNAL OF ELECTRICAL ENGINEERING & TECHNOLOGY, 2022, 17 (02) : 913 - 928
[3] Intrusion Detection of Imbalanced Network Traffic Based on Machine Learning and Deep Learning
Liu, Lan
Wang, Pengcheng
Lin, Jun
Liu, Langzhou
IEEE ACCESS, 2021, 9 : 7550 - 7563
[4] Machine Learning in Network Anomaly Detection: A Survey
Wang, Song
Balarezo, Juan Fernando
Kandeepan, Sithamparanathan
Al-Hourani, Akram
Chavez, Karina Gomez
Rubinstein, Benjamin
IEEE ACCESS, 2021, 9 : 152379 - 152396
[5] Network Encryption Traffic Anomaly Detection Based on Integrated Machine Learning
Yang, Xiaoqing
Angkawisittpan, Niwat
TEHNICKI VJESNIK-TECHNICAL GAZETTE, 2025, 32 (02): : 713 - 722
[6] Anomalous Network Traffic Detection Based on CK Sketch and Machine Learning
Chi, Yaping
Xue, Defan
Yue, Ziyan
Wang, Zhiqiang
Liang Jiaming
CYBERSPACE SAFETY AND SECURITY, CSS 2022, 2022, 13547 : 225 - 243
[7] Controlling Network Traffic Microstructures for Machine-Learning Model Probing
Clausen, Henry
Flood, Robert
Aspinall, David
SECURITY AND PRIVACY IN COMMUNICATION NETWORKS, SECURECOMM 2021, PT I, 2021, 398 : 456 - 475
[8] Intrusion Detection using Network Traffic Profiling and Machine Learning for IoT
Ben Slimane, Jihane
Abd-Elkawy, Eman H.
Maqbool, Albia
JOURNAL OF ELECTRICAL SYSTEMS, 2024, 20 (03) : 2140 - 2149
[9] Evaluation of Machine Learning Algorithms for Detection of Malicious Traffic in SCADA Network
L. Rajesh
Penke Satyanarayana
Journal of Electrical Engineering & Technology, 2022, 17 : 913 - 928
[10] TROJAN TRAFFIC DETECTION BASED ON MACHINE LEARNING
Ma Zhongrui
Huang Yuanyuan
Lu Jiazhong
2020 17TH INTERNATIONAL COMPUTER CONFERENCE ON WAVELET ACTIVE MEDIA TECHNOLOGY AND INFORMATION PROCESSING (ICCWAMTIP), 2020, : 157 - 160

← 1 2 3 4 5 →