Modeling Repeating Behaviors in Packet Arrivals: Detection and Measurement

Jianfeng Li, Jing Tao, Xiaobo Ma, Junjie Zhang, Xiaohong Guan

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

With the growing stickiness of the Internet, numerous automated programs running in terminal facilities (e.g., laptops) tend to keep closely connected to the Internet by repetitively interacting with remote services. It is of fundamental importance to study such repeating behaviors of automated programs in areas like traffic engineering and network monitoring. This paper focuses on repeating behaviors in packet arrivals that are of interest, aiming at a hierarchical characterization of packet arrivals, detection methods and quantitative metrics. To this end, we present a structure-oriented characterization of packet arrivals, which reflects the temporal structure of repeating behaviors at different scales. Based on such characterization, a repeating behavior detection method is proposed by leveraging online-learning prediction, and two novel metrics of repeating behaviors are proposed from different aspects. In addition, a denoising method is developed to enhance the noise-tolerant capability of detection and measurement in face of noises. Experimental results based on real-world traces demonstrate the effectiveness of our proposed approaches in automated program behavior detection and behavioral botnet analysis.

Original languageAmerican English
Title of host publication2015 IEEE Conference on Computer Communications (INFOCOM)
PublisherIEEE
Pages2461-2469
Number of pages9
ISBN (Electronic)978-1-4799-8381-0
DOIs
StatePublished - Aug 24 2015
Event34th IEEE Annual Conference on Computer Communications and Networks, IEEE INFOCOM 2015 - Hong Kong, Hong Kong
Duration: Apr 26 2015May 1 2015

Conference

Conference34th IEEE Annual Conference on Computer Communications and Networks, IEEE INFOCOM 2015
Country/TerritoryHong Kong
CityHong Kong
Period4/26/155/1/15

ASJC Scopus Subject Areas

  • General Computer Science
  • Electrical and Electronic Engineering

Keywords

  • repeating behavior
  • temporal structure
  • traffic modeling

Disciplines

  • Computer Sciences
  • Engineering

Cite this