Publication detail

Traffic Extraction and Classification in Network Forensics

PLUSKAL, J. RYŠAVÝ, O.

Original Title

Traffic Extraction and Classification in Network Forensics

Type

article in a collection out of WoS and Scopus

Language

English

Original Abstract

Network traffic classification is essential for network monitoring, security analysis and also digital forensics. Accurate classification can reduce the amount of information that needs to be analyzed during the investigation. In this paper, we present a study that compares three different algorithms that according to the literature oer high accuracy and acceptable performance. These algorithms are evaluated on their ability to identify traffic classes at application protocol and also network application software levels. Based on experiments, Random forest algorithm gives promising results.

Keywords

network forensics network traffic classification statistical protocol identification

Authors

PLUSKAL, J.; RYŠAVÝ, O.

Released

11. 10. 2017

Location

Praha

Pages from

1

Pages to

2

Pages count

14

URL

https://www.fit.vut.cz/research/publication/11457/

BibTex

@inproceedings{BUT168456,
  author="Jan {Pluskal} and Ondřej {Ryšavý}",
  title="Traffic Extraction and Classification in Network Forensics",
  booktitle="9th International Conference on Digital Forensics & Cyber Crime",
  year="2017",
  pages="1--2",
  address="Praha",
  url="https://www.fit.vut.cz/research/publication/11457/"
}