摘 要:目前主流的恶意流量检测方法是对所有流量都进行安全检测,耗时长,资源浪费大。为节省资源并提高流量检测效率,文章基于机器学习的白流量过滤算法开发了一套能快速辨别并过滤全流量中白流量的过滤系统。系统包括文件检测模块、算法模块和可视化模块三部分。实验证明,相较于传统算法,文章提出的算法能在保证安全性的前提下大大提高流量过滤的效率,节省大量资源。
关键词:机器学习;白流量过滤;恶意流量检测
DOI:10.19850/j.cnki.2096-4706.2023.03.020
基金项目:广西大学生创新创业训练计划立项项目(202110595169)
中图分类号:TP311 文献标识码:A 文章编号:2096-4706(2023)03-0086-04
White Traffic Detection and Filtering System Based on Ensemble Learning
YANG Ren, LU Xiantao
(School of Computer Science and Information Security, Guilin University of Electronic Technology, Guilin 541004, China)
Abstract: The current mainstream malicious traffic detection method is to perform security detection on all traffic, which takes a long time and wastes resources. In order to save resources and improve the efficiency of traffic detection, this paper develops a set of filtering system that can quickly identify and filter white traffic in full traffic based on the white traffic filtering algorithm of machine learning. The system includes three parts: file detection module, algorithm module and visualization module. Experimental results show that, compared with traditional algorithms, the algorithm proposed in this paper can greatly improve the efficiency of traffic filtering and save a lot of resources on the premise of ensuring security.
Keywords: machine learning; white traffic filtering; detection of malicious traffic
参考文献:
[1] 李中魁 . 基于动态阈值的网络流量异常检测方法研究与实现 [D]. 成都:电子科技大学,2010.
[2] JIN S,YEUNG D S . A covariance analysis model for DDoS attack detection [C]//IEEE International Conference on Communications. IEEE,2004:1882-1886.
[3] 孙知信,张玉峰 . 基于多维支持向量机的 P2P 网络流量识别模型 [J]. 吉林大学学报:工学版,2010,40(5):1298-1302.
[4] 左进,陈泽茂 . 基于改进 K 均值聚类的异常检测算法 [J].计算机科学,2016,43(8):258-261.
[5] 张德慧,张德育,刘清云,等 . 基于粒子群算法的 BP 神经网络优化技术 [J]. 计算机工程与设计,2015,36(5):1321-1326.
作者简介:杨韧(2001—),男,汉族,安徽宁国人,本科在读,研究方向:网络安全技术。