ACoPE: An adaptive semi-supervised learning approach for complex-policy enforcement in high-bandwidth networks

  title={ACoPE: An adaptive semi-supervised learning approach for complex-policy enforcement in high-bandwidth networks},
  author={Morteza Noferesti and Rasool Jalili},
  journal={Comput. Networks},



A novel semi-supervised approach for network traffic clustering

This work presents a novel semi-supervised learning method using constrained clustering algorithms that incorporates constraints in the course of clustering, indicating that the overall accuracy and cluster purity can be significantly improved.

A Resilient Stream Learning Intrusion Detection Mechanism for Real-Time Analysis of Network Traffic

A novel real-time (ongoing) network traffic measurement approach that supports resilient analysis for stream learning intrusion detection and is able to provide resiliency to the classifiers even for the detection of unknown attacks.

DSCA: an inline and adaptive application identification approach in encrypted network traffic

DSCA as a DPI-based Stream Classification Algorithm is proposed as a robust classifier for identifying applications over encrypted traffic and a feature selection method, named CfsSubsetEval, is deployed in DSCA to reduce the classification algorithms overhead without accuracy reduction.

Inline high-bandwidth network analysis using a robust stream clustering algorithm

This study proposes an inline high-bandwidth network stream clustering algorithm designed to incrementally mine large amounts of continuously transmitting network traffic when some outliers can be dropped before determining the network traffic behaviour.

Online network traffic classification with incremental learning

The proposed improved data stream mining algorithm is able to classify 325 thousands flow instances per second and achieves up to 91–94 % average accuracy, even when using 10 % of labeled input flows.

Robust Network Traffic Classification

The proposed RTC scheme has the capability of identifying the traffic of zero-day applications as well as accurately discriminating predefined application classes and is significantly better than four state-of-the-art methods.

A semi-supervised model for network traffic anomaly detection

A semi-supervised model using a modified Mahanalobis distance based on PCA for network traffic anomaly detection and a K-means clustering method to build normal profile of traffic to improve the training dataset are proposed.

Classification of encrypted traffic for applications based on statistical features

A new semi-supervised learning is proposed which utilizes clustering algorithms and label propagation techniques and shows that the proposed method has a precise and accurate performance in classification of encrypted traffic for the network applications.