Towards machine learning based source identification of encrypted video traffic / Yan Shi.

The rapid growth of the Internet has helped to popularize video streaming services, which has now become the most dominant content on the Internet. The management of video streaming traffic is complicated by its enormous volume, diverse communication protocols and data formats, and the widespread ad...

Full description

Bibliographic Details
Main Author:	Shi, Yan (Of Michigan State University) (Author)
Language:	English
Published:	2019.
Subjects:	Computer networks > Security measures. Computer networks > Management. Computer security. Streaming technology (Telecommunications) > Safety measures. Firewalls (Computer security) Telecommunication > Traffic > Analysis. Machine learning. Electronic dissertations. Academic theses.
Genre:	Electronic dissertations. Academic theses.
Online Access:	Connect to online resource - MSU authorized users Connect to online resource - All users (Digital Object Identifier Permalink)
Dissertation Note:	Thesis Ph. D. Michigan State University. Electrical Engineering 2019.
Physical Description:	1 online resource (xii, 134 pages) : illustrations
Format:	Thesis Electronic eBook

MARC


LEADER	00000cam a2200000Ka 4500
001	in00006076227
003	OCoLC
005	20220616055836.0
006	m o d
007	cr \|\|\|\|\|\|\|\|\|\|\|
008	200131s2019 xx a obm 000 0 eng d
020			\|a 9781085631464
020			\|a 108563146X
028	5	0	\|a 13902389 \|b UMI
028	5	0	\|a Shi_grad.msu_0128D_16942 \|b local
035			\|a (OCoLC)1138555743
040			\|a EEM \|b eng \|e pn \|c EEM \|d EEM \|d UtOrBLW
049			\|a QEMO \|a EEMT
099			\|a MSU ONLINE THESIS
100	1		\|a Shi, Yan \|c (Of Michigan State University), \|e author.
245	1	0	\|a Towards machine learning based source identification of encrypted video traffic / \|c Yan Shi.
260			\|c 2019.
300			\|a 1 online resource (xii, 134 pages) : \|b illustrations
336			\|a text \|b txt \|2 rdacontent
337			\|a computer \|b c \|2 rdamedia
338			\|a online resource \|b cr \|2 rdacarrier
500			\|a Electronic resource.
502			\|g Thesis \|b Ph. D. \|c Michigan State University. Electrical Engineering \|d 2019.
504			\|a Includes bibliographical references (pages 130-134).
520			\|a The rapid growth of the Internet has helped to popularize video streaming services, which has now become the most dominant content on the Internet. The management of video streaming traffic is complicated by its enormous volume, diverse communication protocols and data formats, and the widespread adoption of encryption. In this thesis, the aim is to develop a novel firewall framework, named Soft-margined Firewall, for managing encrypted video streaming traffic while avoiding violation of user privacy. The system distinguishes itself from conventional firewall systems by incorporating machine learning and Traffic Analysis (TA) as a traffic detection and blocking mechanism. The goal is to detect unknown network traffic, including traffic that is encrypted, tunneled through Virtual Private Network, or obfuscated, in realistic application scenarios. Existing TA methods have limitations in that they can deal only with simple traffic patterns-usually, only a single source of traffic is allowed in a tunnel, and a trained classifier is not portable between network locations, requiring redundant training. This work aims to address these limitations with new techniques in machine learning. The three main contributions of this work are: 1) developing new statistical features around traffic surge periods that can better identify websites with dynamic contents; 2) a two-stage classifier architecture to solve the mixed-traffic problem with state-of-the-art TA features; and 3) leveraging a novel natural-language inspired feature to solve the mixed-traffic problem using Deep-Learning methods. A fully working Soft-margin Firewall with the above distinctive features have been designed, implemented, and verified for both conventional classifiers and the proposed deep-learning based classifiers. The efficacy of the proposed system is confirmed via experiments conducted on actual network setups with a custom-built prototype firewall and OpenVPN servers. The proposed feature-classifier combinations show superior performance compared to previous state-of-the-art results. The solution that combines natural-language inspired traffic feature and Deep-Learning is demonstrated to be able to solve the mixed-traffic problem, and capable of predicting multiple labels associated with one sample. Additionally, the classifier can classify traffic recorded from locations that are different from where the trained traffic was collected. These results are the first of their kind and are expected to lead the way of creating next-generation TA-based firewall systems.
588			\|a Description based on online resource; title from PDF title page (viewed on April 15, 2020)
650		0	\|a Computer networks \|x Security measures. \|0 http://id.loc.gov/authorities/subjects/sh94001277
650		0	\|a Computer networks \|x Management. \|0 http://id.loc.gov/authorities/subjects/sh2006000150
650		0	\|a Computer security. \|0 http://id.loc.gov/authorities/subjects/sh90001862
650		0	\|a Streaming technology (Telecommunications) \|x Safety measures.
650		0	\|a Firewalls (Computer security) \|0 http://id.loc.gov/authorities/subjects/sh00006011
650		0	\|a Telecommunication \|x Traffic \|x Analysis.
650		0	\|a Machine learning. \|0 http://id.loc.gov/authorities/subjects/sh85079324
655		0	\|a Electronic dissertations.
650		7	\|a Machine learning. \|2 fast \|0 (OCoLC)fst01004795
650		7	\|a Firewalls (Computer security) \|2 fast \|0 (OCoLC)fst00925719
650		7	\|a Computer security. \|2 fast \|0 (OCoLC)fst00872484
650		7	\|a Computer networks \|x Security measures. \|2 fast \|0 (OCoLC)fst00872341
650		7	\|a Computer networks \|x Management. \|2 fast \|0 (OCoLC)fst00872323
655		7	\|a Academic theses. \|2 fast \|0 (OCoLC)fst01726453
856	4	0	\|u http://ezproxy.msu.edu/login?url=http://gateway.proquest.com/openurl?url_ver=Z39.88-2004&rft_val_fmt=info:ofi/fmt:kev:mtx:dissertation&res_dat=xri:pqm&rft_dat=xri:pqdiss:13902389 \|z Connect to online resource - MSU authorized users \|t 0
856	4	0	\|u https://doi.org/doi:10.25335/mqwp-rh53 \|z Connect to online resource - All users
907			\|y .b134352336 \|b 220601 \|c 200131
998			\|a (6)wb \|a (6)th \|b 100131 \|c m \|d m \|e - \|f eng \|g xx \|h 0 \|i 7
999	f	f	\|i 42c5f8b6-97e8-520a-a27d-f3b0cdf2ef44 \|s 9bbf8249-fed1-5ef6-bcf4-9e5e1bdc924d \|t 0
952	f	f	\|p Non-Circulating \|a Michigan State University-Library of Michigan \|b Michigan State University \|c MSU Online Resource \|d MSU Online Resource \|t 0 \|e MSU ONLINE THESIS \|h Other scheme \|i Electronic Resource \|n 1
856	4	0	\|t 0 \|u http://ezproxy.msu.edu/login?url=http://gateway.proquest.com/openurl?url_ver=Z39.88-2004&rft_val_fmt=info:ofi/fmt:kev:mtx:dissertation&res_dat=xri:pqm&rft_dat=xri:pqdiss:13902389 \|y Connect to online resource - MSU authorized users
856	4	0	\|t 0 \|u https://doi.org/doi:10.25335/mqwp-rh53 \|y Connect to online resource - All users