Talks and Poster Presentations (with Proceedings-Entry):
F. Meghdouri, F. Iglesias Vazquez, T. Zseby:
"Shedding Light in the Tunnel: Counting Flows in Encrypted Network Traffic";
Talk: 21st IEEE International Conference on Data Mining,
Auckland, New Zealand;
12-07-2021
- 12-10-2021; in: "IEEE ICDM Workshop on Data Mining and Machine Learning for Cybersecurity",
IEEE,
(2021),
798
- 804.
English abstract:
Network traffic analysis helps experts to understand the behavior of communication networks. By exploiting information from packet headers and payloads, ML has been also widely applied to extend the capabilities of traditional statistical approaches. However, modern traffic encryption hampers network traffic analysis, especially in the case of VPNs when multiple flows are encrypted and transported concurrently. An initial step toward extracting information from encrypted traffic is to discover the number of flows that coexist in an aggregated and encrypted data stream. In this paper we propose a technique for disclosing the number of flows aggregated and sent together via encrypted tunnels. We use LSTM cells to learn the relation between the number of flows and the different temporal combinations from available attributes regardless of encryption. Results indicate that predicting the number of flows in encrypted tunnels with a relatively small error is surprisingly possible, providing the basis for a wide range of future research.
Keywords:
network traffic, network flows, lstm
Electronic version of the publication:
https://publik.tuwien.ac.at/files/publik_298744.pdf
Created from the Publication Database of the Vienna University of Technology.