標題: | PCAPLib: A System of Extracting, Classifying, and Anonymizing Real Packet Traces |
作者: | Lin, Ying-Dar Lin, Po-Ching Wang, Sheng-Hao Chen, I-Wei Lai, Yuan-Cheng 資訊工程學系 網路測試中心 Department of Computer Science Network Benchmarking Lab |
關鍵字: | Packet anonymization;privacy;trace repository;utility |
公開日期: | 六月-2016 |
摘要: | This paper presents the PCAPLib system for providing extracted, well-classified, and anonymized packet traces from real network traffic with two mechanisms. First, active trace collection actively extracts and classifies packet traces into sessions by leveraging multiple detection devices. Second, deep packet anonymization protects the privacy in the packet payloads for hundreds of application protocols while preserving the utility of the traces. We evaluate 318 anonymized packet traces collected over a period of four months and show that the efficiency of anonymization is up to 96%. The usefulness of this system for assessing false positives/false negatives in intrusion detection has been also demonstrated. |
URI: | http://dx.doi.org/10.1109/JSYST.2014.2301464 http://hdl.handle.net/11536/132579 |
ISSN: | 1932-8184 |
DOI: | 10.1109/JSYST.2014.2301464 |
期刊: | IEEE SYSTEMS JOURNAL |
Volume: | 10 |
Issue: | 2 |
起始頁: | 520 |
結束頁: | 531 |
顯示於類別: | 期刊論文 |