Collecting and characterizing a real broadband access network traffic dataset

Abstract : Broadband Internet access security relies in the implementation of perimeter policies and in the adoption of access control lists. These measures are precarious because they are based on common and not frequently updated profiles that lack residential users threat information. In this paper, we analyze and profile residential users traffic from fixed broadband Internet access networks of a large telecommunication operator for a period of one week, and we obtain the profile of security alarms generated by an intrusion detection system. The results show that the proposed characterization allows the classification of alerts with a sensitivity of 93% in the differentiation of legitimate and anomalous flows and allows a 73% reduction of the traffic directed to the traffic analyzer, thus validating the collected dataset and enabling more dynamic and efficient access network security.
Document type :
Conference papers
Complete list of metadatas

https://hal.sorbonne-universite.fr/hal-02099033
Contributor : Guy Pujolle <>
Submitted on : Saturday, April 13, 2019 - 7:39:07 PM
Last modification on : Wednesday, May 15, 2019 - 3:39:37 AM

Identifiers

Citation

Martin Andreoni Lopez, Renato Souza Silva, Igor Alvarenga, Gabriel Rebello, Igor Sanz, et al.. Collecting and characterizing a real broadband access network traffic dataset. 2017 1st Cyber Security in Networking Conference (CSNet), Oct 2017, Rio de Janeiro, Brazil. pp.1-8, ⟨10.1109/CSNET.2017.8241999⟩. ⟨hal-02099033⟩

Share

Metrics

Record views

30