Forensic Data Reduction In Probabilistic Packet Marking Using Hidden Naive Bayes
碩士 === 國立中正大學 === 通訊工程研究所 === 100 === Network forensics is an essential security component to pinpoint the location and root cause of security attacks. To preserve the evidences after capturing packets, a huge storage requirement becomes a challenge which must be overcome. In this paper, we propose...
| Main Authors: | , |
|---|---|
| Other Authors: | |
| Format: | Others |
| Language: | zh-TW |
| Published: |
2012
|
| Online Access: | http://ndltd.ncl.edu.tw/handle/03087038224651686434 |
| id |
ndltd-TW-100CCU00650032 |
|---|---|
| record_format |
oai_dc |
| spelling |
ndltd-TW-100CCU006500322015-10-13T21:07:17Z http://ndltd.ncl.edu.tw/handle/03087038224651686434 Forensic Data Reduction In Probabilistic Packet Marking Using Hidden Naive Bayes 運用隱藏式貝氏分類器壓縮網路鑑識資料 Huang, Syuchen 黃煦宸 碩士 國立中正大學 通訊工程研究所 100 Network forensics is an essential security component to pinpoint the location and root cause of security attacks. To preserve the evidences after capturing packets, a huge storage requirement becomes a challenge which must be overcome. In this paper, we propose a Hidden Naive Bayes (HNB) based classifier to classify all incoming packets as normal or suspicious packets. Further, we also show the integration between the proposed classifier and probabilistic packet marking (PPM), which is an well known IP trace back solution. The experiments show that our proposed approach is able to reduce the storage amount while maintaining high forensic accuracy. 鄭伯炤 2012 學位論文 ; thesis 76 zh-TW |
| collection |
NDLTD |
| language |
zh-TW |
| format |
Others
|
| sources |
NDLTD |
| description |
碩士 === 國立中正大學 === 通訊工程研究所 === 100 === Network forensics is an essential security component to pinpoint the location and root cause of security attacks. To preserve the evidences after capturing packets, a huge storage requirement becomes a challenge which must be overcome. In this paper, we propose a Hidden Naive Bayes (HNB) based classifier to classify all incoming packets as normal or suspicious packets. Further, we also show the integration between the proposed classifier and probabilistic packet marking (PPM), which is an well known IP trace back solution. The experiments show that our proposed approach is able to reduce the storage amount while maintaining high forensic accuracy.
|
| author2 |
鄭伯炤 |
| author_facet |
鄭伯炤 Huang, Syuchen 黃煦宸 |
| author |
Huang, Syuchen 黃煦宸 |
| spellingShingle |
Huang, Syuchen 黃煦宸 Forensic Data Reduction In Probabilistic Packet Marking Using Hidden Naive Bayes |
| author_sort |
Huang, Syuchen |
| title |
Forensic Data Reduction In Probabilistic Packet Marking Using Hidden Naive Bayes |
| title_short |
Forensic Data Reduction In Probabilistic Packet Marking Using Hidden Naive Bayes |
| title_full |
Forensic Data Reduction In Probabilistic Packet Marking Using Hidden Naive Bayes |
| title_fullStr |
Forensic Data Reduction In Probabilistic Packet Marking Using Hidden Naive Bayes |
| title_full_unstemmed |
Forensic Data Reduction In Probabilistic Packet Marking Using Hidden Naive Bayes |
| title_sort |
forensic data reduction in probabilistic packet marking using hidden naive bayes |
| publishDate |
2012 |
| url |
http://ndltd.ncl.edu.tw/handle/03087038224651686434 |
| work_keys_str_mv |
AT huangsyuchen forensicdatareductioninprobabilisticpacketmarkingusinghiddennaivebayes AT huángxùchén forensicdatareductioninprobabilisticpacketmarkingusinghiddennaivebayes AT huangsyuchen yùnyòngyǐncángshìbèishìfēnlèiqìyāsuōwǎnglùjiànshízīliào AT huángxùchén yùnyòngyǐncángshìbèishìfēnlèiqìyāsuōwǎnglùjiànshízīliào |
| _version_ |
1718055164488712192 |