An Attack Traffic Identification Method Based on Temporal Spectrum
- URL: http://arxiv.org/abs/2411.07510v1
- Date: Tue, 12 Nov 2024 03:09:14 GMT
- Title: An Attack Traffic Identification Method Based on Temporal Spectrum
- Authors: Wenwei Xie, Jie Yin, Zihao Chen,
- Abstract summary: This paper proposes an attack traffic detection and identification method based on temporal spectrum.
Traffic data is segmented by a sliding window to construct a feature sequence and a corresponding label sequence for network traffic.
Models trained with the SSPE or COAP method improve identification accuracy by 10%, and exhibit strong robustness, particularly in noisy environments.
- Score: 7.6939207062219
- License:
- Abstract: To address the issues of insufficient robustness, unstable features, and data noise interference in existing network attack detection and identification models, this paper proposes an attack traffic detection and identification method based on temporal spectrum. First, traffic data is segmented by a sliding window to construct a feature sequence and a corresponding label sequence for network traffic. Next, the proposed spectral label generation methods, SSPE and COAP, are applied to transform the label sequence into spectral labels and the feature sequence into temporal features. Spectral labels and temporal features are used to capture and represent behavioral patterns of attacks. Finally, the constructed temporal features and spectral labels are used to train models, which subsequently detects and identifies network attack behaviors. Experimental results demonstrate that compared to traditional methods, models trained with the SSPE or COAP method improve identification accuracy by 10%, and exhibit strong robustness, particularly in noisy environments.
Related papers
- Continual-MAE: Adaptive Distribution Masked Autoencoders for Continual Test-Time Adaptation [49.827306773992376]
Continual Test-Time Adaptation (CTTA) is proposed to migrate a source pre-trained model to continually changing target distributions.
Our proposed method attains state-of-the-art performance in both classification and segmentation CTTA tasks.
arXiv Detail & Related papers (2023-12-19T15:34:52Z) - Assessing Cyclostationary Malware Detection via Feature Selection and
Classification [0.0]
This research focuses on identifying cyclostationary malware behavior and its detection.
Main goal is to pinpoint essential cyclostationary features used in NIDSs.
Analysis identifies the internet protocol as the most noticeable cyclostationary feature pattern used by malware.
arXiv Detail & Related papers (2023-08-29T11:52:31Z) - Deep Spectro-temporal Artifacts for Detecting Synthesized Speech [57.42110898920759]
This paper provides an overall assessment of track 1 (Low-quality Fake Audio Detection) and track 2 (Partially Fake Audio Detection)
In this paper, spectro-temporal artifacts were detected using raw temporal signals, spectral features, as well as deep embedding features.
We ranked 4th and 5th in track 1 and track 2, respectively.
arXiv Detail & Related papers (2022-10-11T08:31:30Z) - Edge Detection and Deep Learning Based SETI Signal Classification Method [0.0]
Scientists at the Berkeley SETI Research Center are Searching for Extraterrestrial Intelligence (SETI)
New signal detection method converts radio signals into spectrograms through Fourier transforms and classifies signals represented by two-dimensional time-frequency spectrums.
In view of the negative impact of background noises on the accuracy of spectrograms classification, a new method is introduced in this paper.
arXiv Detail & Related papers (2022-03-29T04:31:48Z) - S3: Supervised Self-supervised Learning under Label Noise [53.02249460567745]
In this paper we address the problem of classification in the presence of label noise.
In the heart of our method is a sample selection mechanism that relies on the consistency between the annotated label of a sample and the distribution of the labels in its neighborhood in the feature space.
Our method significantly surpasses previous methods on both CIFARCIFAR100 with artificial noise and real-world noisy datasets such as WebVision and ANIMAL-10N.
arXiv Detail & Related papers (2021-11-22T15:49:20Z) - Discriminative Singular Spectrum Classifier with Applications on
Bioacoustic Signal Recognition [67.4171845020675]
We present a bioacoustic signal classifier equipped with a discriminative mechanism to extract useful features for analysis and classification efficiently.
Unlike current bioacoustic recognition methods, which are task-oriented, the proposed model relies on transforming the input signals into vector subspaces.
The validity of the proposed method is verified using three challenging bioacoustic datasets containing anuran, bee, and mosquito species.
arXiv Detail & Related papers (2021-03-18T11:01:21Z) - Dual-Refinement: Joint Label and Feature Refinement for Unsupervised
Domain Adaptive Person Re-Identification [51.98150752331922]
Unsupervised domain adaptive (UDA) person re-identification (re-ID) is a challenging task due to the missing of labels for the target domain data.
We propose a novel approach, called Dual-Refinement, that jointly refines pseudo labels at the off-line clustering phase and features at the on-line training phase.
Our method outperforms the state-of-the-art methods by a large margin.
arXiv Detail & Related papers (2020-12-26T07:35:35Z) - DNS Covert Channel Detection via Behavioral Analysis: a Machine Learning
Approach [0.09176056742068815]
We propose an effective covert channel detection method based on the analysis of DNS network data passively extracted from a network monitoring system.
The proposed solution has been evaluated over a 15-day-long experimental session with the injection of traffic that covers the most relevant exfiltration and tunneling attacks.
arXiv Detail & Related papers (2020-10-04T13:28:28Z) - Change Point Detection in Time Series Data using Autoencoders with a
Time-Invariant Representation [69.34035527763916]
Change point detection (CPD) aims to locate abrupt property changes in time series data.
Recent CPD methods demonstrated the potential of using deep learning techniques, but often lack the ability to identify more subtle changes in the autocorrelation statistics of the signal.
We employ an autoencoder-based methodology with a novel loss function, through which the used autoencoders learn a partially time-invariant representation that is tailored for CPD.
arXiv Detail & Related papers (2020-08-21T15:03:21Z) - Spectrum Sensing and Signal Identification with Deep Learning based on
Spectral Correlation Function [2.6626788331762867]
A convolutional neural network (CNN) model employing spectral correlation function is proposed for wireless spectrum sensing and signal identification.
The proposed method classifies wireless signals without a priori information and it is implemented in two different settings entitled CASE1 and CASE2.
Even though the implementation herein is over cellular signals, the proposed approach can be extended to the detection and classification of any signal that exhibits cyclostationary features.
arXiv Detail & Related papers (2020-03-17T06:56:26Z) - Spectral CUSUM for Online Network Structure Change Detection [14.525631550607281]
This paper presents an online change detection algorithm called Spectral-CUSUM to detect unknown network structure changes.
We characterize the average run length (ARL) and the expected detection delay (EDD) of the Spectral-CUSUM procedure and prove its optimality.
arXiv Detail & Related papers (2019-10-20T23:47:33Z)
This list is automatically generated from the titles and abstracts of the papers in this site.
This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.