To detect and analyze malicious traffic accurately, a malicious traffic detection system is implemented by using machine learning algorithms and visualization methods. The system is divided into three modules: the traffic detection module builds the traffic detection model through the random forest algorithm and uses the CIC-IDS-2017 dataset to train and optimize the model. The Traffic Capture and Feature Extraction module uses sniffer technology to capture the traffic packets flowing through the network card and extract the characteristics of the traffic data. The visualization module uses B/S architecture to provide data visualization support after traffic detection. To illustrate the system's specific design, the basic process of the intrusion detection system will be used. An example analysis shows that in the actual network environment, the model can detect malicious traffic types more accurately after training the dataset and re-optimizing the real traffic. At the same time, the system can visualize the display and e-mail warning based on the detection results, improve user-friendliness, and provide support for in-depth analysis of malicious traffic.
Research and implementation of malicious traffic detection based on machine learning
Yongqiang Xu,Junfan Zhao,Jinting Wu,Yinhao Tang,Lei Wang,Gang Yao
Published 2022 in International Conference on Computational Intelligence and Security
ABSTRACT
PUBLICATION RECORD
- Publication year
2022
- Venue
International Conference on Computational Intelligence and Security
- Publication date
2022-12-01
- Fields of study
Computer Science
- Identifiers
- External record
- Source metadata
Semantic Scholar
CITATION MAP
EXTRACTION MAP
CLAIMS
- No claims are published for this paper.
CONCEPTS
- No concepts are published for this paper.
REFERENCES
Showing 1-12 of 12 references · Page 1 of 1
CITED BY
Showing 1-3 of 3 citing papers · Page 1 of 1