NESG

Icono Icono

Icono Icono

Performance of OpenDPI in Identifying Sampled Network Traffic

Jawad Khalife; Amjad Hajjar; Jesús Esteban Díaz Verdejo
Abstract:
The identification of the nature of the traffic flowing through a TCP/IP network is a relevant target for traffic engineering and security related tasks. Despite the privacy concerns it arises, Deep Packet Inspection (DPI) is one of the most successful current techniques. Nevertheless, the performance of DPI is strongly limited by computational issues related to the huge amount of data it needs to handle, both in terms of number of packets and the length of the packets. One way to reduce the computational overhead with identification techniques is to sample the traffic being monitored. This paper addresses the sensitivity of OpenDPI, one of the most powerful freely available DPI systems, with sampled network traffic. Two sampling techniques are applied and compared: the per-packet payload sampling, and the per-flow packet sampling. Based on the obtained results, some conclusions are drawn to show how far DPI methods could be optimised through traffic sampling.
Research areas:
Year:
2013
Type of Publication:
Article
Journal:
Journal of Networks
Volume:
8
Number:
1
Pages:
71-81
ISSN:
1796-2056
Hits: 1421