Přehled o publikaci
2019
Application-Aware Flow Monitoring
VELAN, Petr and Pavel ČELEDABasic information
Original name
Application-Aware Flow Monitoring
Authors
VELAN, Petr and Pavel ČELEDA
Edition
Washington DC, USA, 2019 IFIP/IEEE Symposium on Integrated Network and Service Management (IM), p. 701-706, 6 pp. 2019
Publisher
IEEE
Other information
Language
English
Type of outcome
Proceedings paper
Country of publisher
United States of America
Confidentiality degree
is not subject to a state or trade secret
Publication form
electronic version available online
Marked to be transferred to RIV
Yes
RIV identification code
RIV/00216224:14610/19:00109481
Organization
Ústav výpočetní techniky – Repository – Repository
ISBN
978-1-72810-618-2
ISSN
UT WoS
EID Scopus
Keywords in English
network; monitoring; measurement; flow; application flow; NetFlow; IPFIX; encryption; performance; 100 Gbps
Links
EF16_019/0000822, research and development project.
Changed: 8/9/2020 00:34, RNDr. Daniel Jakubík
Abstract
In the original language
Network flow monitoring has been a part of network security for the last dozen years. It is constantly evolving to keep pace with changes in network operation and innovative network attacks. The thesis contributes to the continuous efforts by exploring the possibilities unlocked by extending the flow data with application-specific information. We show how the construction of flows is affected by processing of application data, present the benefits to traffic analysis, and assess the inevitable performance loss caused by additional data processing. To compensate for the lost performance, several novel optimisation techniques are proposed for the flow monitoring process. Recognising that the increasing deployment of encryption is going to limit the benefits of application flow monitoring, we perform a survey of methods for measurement of encrypted traffic. The thesis is concluded by an outlook towards future possibilities for flow monitoring advancement.
