Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Network equipment type identification method and system based on decision tree

A technology for type identification and network equipment, applied in transmission systems, character and pattern recognition, instruments, etc., can solve problems such as denial of service, terminal equipment failure to operate normally, identification object buffer overflow, etc., and achieve the effect of improving generalization ability

Active Publication Date: 2018-12-21
NANJING UNIV OF POSTS & TELECOMM
View PDF3 Cites 29 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, traditional identification methods often need to send many meaningless detection messages when detecting network fingerprints, or use abnormal and malformed requests to test the identification object. This type of identification method is likely to cause buffer overflow to the identification object, resulting in a denial of service , resulting in the end device not functioning properly

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network equipment type identification method and system based on decision tree
  • Network equipment type identification method and system based on decision tree

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0042] according to figure 1 Given the overall process flow chart, the specific implementation of the present embodiment is as follows:

[0043] 1. Known device packet processing

[0044] (1) Sample collection: use oshada, a paid network device search system, to detect the type and IP address of network devices in the network, send HTTP-GET requests to known devices respectively, and obtain HTTP data packets.

[0045] (2) Data processing: Extract the information that can reflect the characteristics of the terminal equipment in the filtered HTTP data packet as a sample feature, that is, count the total number of header fields in the HTTP response packet, and select the 30 fields with the highest frequency as feature 1 to feature 30, Vectorize the feature data of the text type through the TF-IDF algorithm;

[0046](3) Data application: train the data after the feature vectorization of HTTP packets through the decision tree-c45 algorithm to generate a decision tree. The input ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a network equipment type identification method and a system based on a decision tree, belonging to the technical field of network security. The method comprises the steps of collecting data flow of network equipment, preprocessing the network flow, extracting HTTP data packets from the flow, vectorizing the characteristic data of text type, and utilizing the characteristicvector to carry out decision tree. C45 classification, the final identification of the type of equipment; The invention can adopt a decision tree based on network traffic tree. C45 algorithm identifythat type of network device. The method is based on the passive method to detect the type of unknown device, which will not be captured by the intrusion detection system. At the same time, the type of unknown device can be recognized, and the type of unknown device can be added to the system to improve the generalization ability.

Description

technical field [0001] The present invention relates to the technical fields of network security and machine learning, and more specifically, relates to a method and system for identifying network equipment types based on a decision tree. Background technique [0002] With the development of big data, Internet of Things, IoT (Internet of Things) technology and communication protocols between devices, there are more and more terminal devices in cyberspace. A large number of wireless routers, network printers, VoIP network phones, network digital video cameras and some industrial control equipment all have public network IP addresses. These devices together with traditional hosts, servers and routers constitute the current network environment. According to statistics, in addition to ordinary websites and hosts, the number of terminal devices connected to cyberspace has exceeded 5 million, and there are more than 20 categories. The scale and types of terminal equipment in the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06K9/62H04L29/06H04L29/08
CPCH04L63/1408H04L67/02G06F18/24323Y02D30/70
Inventor 陈丹伟刘翔元刘尚东
Owner NANJING UNIV OF POSTS & TELECOMM
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com