Tracking User Application Activity by using Machine Learning Techniques on Network Traffic

Authors

Sina Fathi-Kazerooni, New Jersey Institute of Technology
Yagiz Kaymak, New Jersey Institute of Technology
Roberto Rojas-Cessa, New Jersey Institute of Technology

Document Type

Conference Proceeding

Publication Date

3-18-2019

Abstract

A network eavesdropper may invade the privacy of an online user by collecting the passing traffic and classifying the applications that generated the network traffic. This collection may be used to build fingerprints of the user's Internet usage. In this paper, we investigate the feasibility of performing such breach on encrypted network traffic generated by actual users. We adopt the random forest algorithm to classify the applications in use by users of a campus network. Our classification system identifies and quantifies different statistical features of user's network traffic to classify applications rather than looking into packet contents. In addition, application classification is performed without employing a port mapping at the transport layer. Our results show that applications can be identified with an average precision and recall of up to 99%.

Identifier

85063874906 (Scopus)

ISBN

[9781538678220]

Publication Title

1st International Conference on Artificial Intelligence in Information and Communication Icaiic 2019

External Full Text Location

https://doi.org/10.1109/ICAIIC.2019.8669040

First Page

405

Last Page

410

Recommended Citation

Fathi-Kazerooni, Sina; Kaymak, Yagiz; and Rojas-Cessa, Roberto, "Tracking User Application Activity by using Machine Learning Techniques on Network Traffic" (2019). Faculty Publications. 7721.
https://digitalcommons.njit.edu/fac_pubs/7721