Sniffing Detection Based on Network Traffic Probing and Machine Learning

16Citations
Citations of this article
44Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

Cyber attacks are on the rise and each day cyber criminals are developing more and more sophisticated methods to compromise the security of their targets. Sniffing is one of the most important techniques that enables the attacker to collect information on the vulnerabilities of the devices, protocols and applications that can be exploited within the targeted network. It relies mainly on passively analyzing the traffic exchanged within the network, and due to its nature, such an activity is difficult to discover. That is why, in this article, we first revisit existing techniques and tools that can be used to perform sniffing as well as the corresponding mitigation methods. Based on this background, we propose a novel measurement-based detection method that infers whether the sniffing software is active on the suspected machine by network traffic probing and machine learning techniques. The presented experimental results prove that the proposed solution is effective.

Cite

CITATION STYLE

APA

Gregorczyk, M., Zorawski, P., Nowakowski, P., Cabaj, K., & Mazurczyk, W. (2020). Sniffing Detection Based on Network Traffic Probing and Machine Learning. IEEE Access, 8, 149255–149269. https://doi.org/10.1109/ACCESS.2020.3016076

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free