Network application identification using transition pattern of payload length

Shinnosuke Yagi; Yuji Waizumi; Hiroshi Tsunoda; Abbas Jamalipour; Nei Kato; Yoshiaki Nemoto

doi:10.1109/wcnc.2008.462

Network application identification using transition pattern of payload length

Shinnosuke Yagi, Yuji Waizumi, Hiroshi Tsunoda, Abbas Jamalipour, Nei Kato, Yoshiaki Nemoto

INF - Applied Information Sciences

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

6 Citations (Scopus)

Abstract

In recent years, information leakage through the Internet has become a new social problem. Many information leakage incidents are caused by illegal applications such as Peer-to-Peer (P2P) file sharing software. To prevent information leakage, early detection and blocking of the traffic exchanged by illegal applications is strongly required. In this paper, we propose a method for application discrimination of monitored traffic based on the transition pattern of payload length during start up phase of the communication. The proposed method does not need port numbers, which can be spoofed easily. Through experiments using real network traffic, we show that the proposed method can quickly and accurately discriminate applications.

Original language	English
Title of host publication	WCNC 2008 - IEEE Wireless Communications and Networking Conference, Conference Proceedings
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	2633-2638
Number of pages	6
ISBN (Print)	9781424419968
DOIs	https://doi.org/10.1109/wcnc.2008.462
Publication status	Published - 2008
Event	IEEE Wireless Communications and Networking Conference, WCNC 2008 - Las Vegas, NV, United States Duration: 2008 Mar 31 → 2008 Apr 3

Publication series

Name	IEEE Wireless Communications and Networking Conference, WCNC
ISSN (Print)	1525-3511

Conference

Conference	IEEE Wireless Communications and Networking Conference, WCNC 2008
Country/Territory	United States
City	Las Vegas, NV
Period	08/3/31 → 08/4/3

Access to Document

10.1109/wcnc.2008.462

Cite this

Yagi, S., Waizumi, Y., Tsunoda, H., Jamalipour, A., Kato, N., & Nemoto, Y. (2008). Network application identification using transition pattern of payload length. In WCNC 2008 - IEEE Wireless Communications and Networking Conference, Conference Proceedings (pp. 2633-2638). Article 4489493 (IEEE Wireless Communications and Networking Conference, WCNC). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/wcnc.2008.462

Yagi, Shinnosuke ; Waizumi, Yuji ; Tsunoda, Hiroshi et al. / Network application identification using transition pattern of payload length. WCNC 2008 - IEEE Wireless Communications and Networking Conference, Conference Proceedings. Institute of Electrical and Electronics Engineers Inc., 2008. pp. 2633-2638 (IEEE Wireless Communications and Networking Conference, WCNC).

@inproceedings{9533336becdb41be8f70346e32c7f597,

title = "Network application identification using transition pattern of payload length",

abstract = "In recent years, information leakage through the Internet has become a new social problem. Many information leakage incidents are caused by illegal applications such as Peer-to-Peer (P2P) file sharing software. To prevent information leakage, early detection and blocking of the traffic exchanged by illegal applications is strongly required. In this paper, we propose a method for application discrimination of monitored traffic based on the transition pattern of payload length during start up phase of the communication. The proposed method does not need port numbers, which can be spoofed easily. Through experiments using real network traffic, we show that the proposed method can quickly and accurately discriminate applications.",

author = "Shinnosuke Yagi and Yuji Waizumi and Hiroshi Tsunoda and Abbas Jamalipour and Nei Kato and Yoshiaki Nemoto",

year = "2008",

doi = "10.1109/wcnc.2008.462",

language = "English",

isbn = "9781424419968",

series = "IEEE Wireless Communications and Networking Conference, WCNC",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "2633--2638",

booktitle = "WCNC 2008 - IEEE Wireless Communications and Networking Conference, Conference Proceedings",

address = "United States",

note = "IEEE Wireless Communications and Networking Conference, WCNC 2008 ; Conference date: 31-03-2008 Through 03-04-2008",

}

Yagi, S, Waizumi, Y, Tsunoda, H, Jamalipour, A, Kato, N & Nemoto, Y 2008, Network application identification using transition pattern of payload length. in WCNC 2008 - IEEE Wireless Communications and Networking Conference, Conference Proceedings., 4489493, IEEE Wireless Communications and Networking Conference, WCNC, Institute of Electrical and Electronics Engineers Inc., pp. 2633-2638, IEEE Wireless Communications and Networking Conference, WCNC 2008, Las Vegas, NV, United States, 08/3/31. https://doi.org/10.1109/wcnc.2008.462

Network application identification using transition pattern of payload length. / Yagi, Shinnosuke; Waizumi, Yuji; Tsunoda, Hiroshi et al.
WCNC 2008 - IEEE Wireless Communications and Networking Conference, Conference Proceedings. Institute of Electrical and Electronics Engineers Inc., 2008. p. 2633-2638 4489493 (IEEE Wireless Communications and Networking Conference, WCNC).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Network application identification using transition pattern of payload length

AU - Yagi, Shinnosuke

AU - Waizumi, Yuji

AU - Tsunoda, Hiroshi

AU - Jamalipour, Abbas

AU - Kato, Nei

AU - Nemoto, Yoshiaki

PY - 2008

Y1 - 2008

N2 - In recent years, information leakage through the Internet has become a new social problem. Many information leakage incidents are caused by illegal applications such as Peer-to-Peer (P2P) file sharing software. To prevent information leakage, early detection and blocking of the traffic exchanged by illegal applications is strongly required. In this paper, we propose a method for application discrimination of monitored traffic based on the transition pattern of payload length during start up phase of the communication. The proposed method does not need port numbers, which can be spoofed easily. Through experiments using real network traffic, we show that the proposed method can quickly and accurately discriminate applications.

AB - In recent years, information leakage through the Internet has become a new social problem. Many information leakage incidents are caused by illegal applications such as Peer-to-Peer (P2P) file sharing software. To prevent information leakage, early detection and blocking of the traffic exchanged by illegal applications is strongly required. In this paper, we propose a method for application discrimination of monitored traffic based on the transition pattern of payload length during start up phase of the communication. The proposed method does not need port numbers, which can be spoofed easily. Through experiments using real network traffic, we show that the proposed method can quickly and accurately discriminate applications.

UR - http://www.scopus.com/inward/record.url?scp=51649100827&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=51649100827&partnerID=8YFLogxK

U2 - 10.1109/wcnc.2008.462

DO - 10.1109/wcnc.2008.462

M3 - Conference contribution

AN - SCOPUS:51649100827

SN - 9781424419968

T3 - IEEE Wireless Communications and Networking Conference, WCNC

SP - 2633

EP - 2638

BT - WCNC 2008 - IEEE Wireless Communications and Networking Conference, Conference Proceedings

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - IEEE Wireless Communications and Networking Conference, WCNC 2008

Y2 - 31 March 2008 through 3 April 2008

ER -

Yagi S, Waizumi Y, Tsunoda H, Jamalipour A, Kato N, Nemoto Y. Network application identification using transition pattern of payload length. In WCNC 2008 - IEEE Wireless Communications and Networking Conference, Conference Proceedings. Institute of Electrical and Electronics Engineers Inc. 2008. p. 2633-2638. 4489493. (IEEE Wireless Communications and Networking Conference, WCNC). doi: 10.1109/wcnc.2008.462

Network application identification using transition pattern of payload length

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this