Network Fingerprinting and Classification in Practice (2022)

By John Mansor, Zach Simpson; OpenVault, LLC.

Network fingerprinting is an emerging classification and filtering process that utilizes standard flow protocols to extract and enrich traffic records for analytics purposes. The process utilizes both public and private enrichment resources to create a modular, templated framework for use by automated machine learning (ML) and artificial intelligence (AI) systems. The goal, to create a predictive, proactive and forecast ready system for network traffic analysis, including the evolving diversity of traffic.

Through flexible templating, network fingerprinting enables a system to rapidly identify destination bottlenecks, detect anomalies within traffic flows and even recommend package adjustments. This approach has no deep packet inspection requirement and leverages flow record and packet metadata to store and enrich existing flow sources. The separation of enrichment from machine and AI techniques supports the use of homegrown solutions such as forecasting or monitoring while also allowing the use of additional open-source models for quick deployment and rapid time to value. This flexibility is designed to enable use cases across a variety of network, threat assessment and quality of service spaces and includes models to address proactive network management, self-healing actions (platform to network connections), anomaly detection, traffic monitoring, customer churn and capacity management.

The proceeding sections introduce the basic elements needed to achieve network fingerprinting and classification processes and demonstrate possible outcomes when leveraging those resources in traffic flow environments. The processes outlined focus on enrichment and augmentation, leveraging standard traffic flow protocols at a software layer without the need for specific network inspection hardware.

By clicking the "Download Paper" button, you are agreeing to our terms and conditions.

Similar Papers

Modulation Practice Used In Satellite Television Transmission
By Gary W. Stanton, Southern Satellite Systems, Inc.
Machine Learning and Proactive Network Maintenance: Transforming Today's Plant Operations
By Brady Volpe, The VolpeFirm and NimbleThis; Berk Ottlik, NimbleThis LLC
Technical Eye Opener Workshop: Training/Job Classification/licensing For CATV?
By Society of Cable Television Engineers
Effectiveness Of Static Scrambling Vs Dynamic Scrambling Systems A Classification Method
By Michael T. Hayashi, Pioneer Communications of America, Inc.
Leakage in a High Split World: Detecting and Measuring Upstream Leakage Levels in a One Gpbs Symmetrical High Split Hybrid Fiber Coax Network
By John Chrostowski, Benny Lewandowski & Dan Rice, Comcast; Greg Tresness, Arcom Digital, LLC.
Rf Fingerprinting: An Operationally Effective Method To Reduce Cable Television Signal And Equipment Theft
By Lee Pedlow
Leakage Detection In Full Duplex DOCSIS - Identification and Measurement of Leakage Levels in a Multigigabit Symmetrical Full Duplex DOCSIS Network
By Benny Lewandowski, Comcast; Greg Tresness, Arcom Digital, LLC.; Jon-En Wang, Comcast
Detection And Classification Of RF Impairments For Higher Capacity Upstreams Using Advanced TDMA
By Daniel Howard, Broadcom Corporation
Can Future Networks Survive Without Artificial Intelligence?
By Dr. Claudio Righetti, Emilia Gibellini, Carlos Germán Carreño Romano & Gabriel Carro; Telecom Argentina S.A.
Packet Network Topologies For Next Generation Video On Demand And Switched Broadcast Service Delivery
By John Amaral and Paul Pilotte, Artel Video Systems
More Results >>