6th International ICST Conference on Broadband Communications, Networks, and Systems

Research Article

Identification of P2P Flows Through Host Activity

Download597 downloads
Cite
BibTeX Plain Text
  • @INPROCEEDINGS{10.4108/ICST.BROADNETS2009.7229,
    author={John Hurley and Emi Garcia-Palacios and Sakir Sezer},
    title={Identification of P2P Flows Through Host Activity},
    proceedings={6th International ICST Conference on Broadband Communications, Networks, and Systems},
    publisher={IEEE},
    proceedings_a={BROADNETS},
    year={2009},
    month={11},
    keywords={component P2P Traffic Classification Host Acivity},
    doi={10.4108/ICST.BROADNETS2009.7229}
}
  • John Hurley
    Emi Garcia-Palacios
    Sakir Sezer
    Year: 2009
    Identification of P2P Flows Through Host Activity
    BROADNETS
    IEEE
    DOI: 10.4108/ICST.BROADNETS2009.7229
John Hurley1,*, Emi Garcia-Palacios1,*, Sakir Sezer1,*
  • 1: The Institute of Electronics, Communications and Information Technology (ECIT), Queens University of Belfast, Northern Ireland
*Contact email: jhurley03@qub.ac.uk, e.garcia@ecit.qub.ac.uk, s.sezer@ecit.qub.ac.uk

Abstract

With the increasing quantity and varying nature of traffic crossing the internet, coupled with techniques such as fluctuating port numbers and transport layer encryption, the identification of individual packet flows is becoming more difficult. We introduce and investigate a new method for the detection of P2P flows based on the activity of the hosts (IP addresses) involved in the connection. Heuristics are generated that examine properties of these hosts and used to uniquely detect individual P2P and non-P2P flows. The identification strategy has been tested on two real network data traces from a core internet router with some classification accuracies showing higher than 99%.

Keywords
component P2P Traffic Classification Host Acivity
Published
2009-11-17
Publisher
IEEE
Modified
2010-05-16
http://dx.doi.org/10.4108/ICST.BROADNETS2009.7229
Copyright © 2009–2024 ICST