科学研究

学术讲座:Data-Driven Cyber Security & A Constrained Clustering

发布时间:2017-06-28

报告题目:Data-Driven Cyber Security

主讲嘉宾:Prof. Yang Xiang(项阳) Swinburne University of Technology(澳大利亚斯威本科技大学)

邀请人:张勇老师、张鹏老师

时间:2017年6月29日9:00-10:00

地点:科技楼1504

报告摘要: Today we have evidenced massive cyber attacks having hit millions of people in more than 150 countries with billions of dollars lose. Cyber security has become one of the top priorities in the research and development agenda globally.

In the big data era, we face a diversity of datasets from a uge number of sources in different domains. These datasets consist of multiple modalities, each of which has a different representation, distribution, scale, and density.

It has been widely recognized that the power of knowledge from multiple disparate (but potentially connected) datasets is paramount. For example, collecting multiple sources of information from online social networks has become common exercise to deal with social security problems.

Big data analytics are some of the most effective defenses against cyber intrusions. Better, faster, actionable security information reduces the critical time from detection to remediation, enabling cyber warfare specialists to proactively defend and protect cyberspace.

New methods and tools, consequently, must follow up in order to adapt to this emerging security paradigm. In this talk, we will discuss the concept of Data-Driven Cyber Security and how big data analytics can be used to address the security and privacy problems in cyberspace.

报告人简介:Professor Yang Xiang received his PhD in Computer Science from Deakin University, Australia. He is now the Dean of Digital Research at Swinburne University of Technology.

. His research interests include network and system security, distributed systems, and data analytics. He has published more than 200 research papers in international journals and conferences, such as IEEE Transactions on Computers, IEEE Transactions on Parallel and Distributed Systems, IEEE Transactions on Information Security and Forensics, and IEEE Journal on Selected Areas in Communications. He serves as the Associate Editor of IEEE Transactions on Computers, IEEE Transactions on Parallel and Distributed Systems, Security and Communication Networks (Wiley), and the Editor of Journal of Network and Computer Applications (Elsevier). He is a Senior Member of the IEEE.

============================================================

报告题目:A Constrained Clustering Approach for Network Traffic Classification

主讲嘉宾:Dr. Yu Wang(王宇) Deakin University(澳大利亚迪肯大学)

邀请人:张勇老师、张鹏老师

时间:2017年6月29日10:00-11:00

地点:科技楼1504

报告摘要:

Statistics-based Internet traffic classification using machine learning techniques has attracted extensive research interests lately, because of the increasing ineffectiveness of traditional port-based and payload-based approaches. In particular, unsupervised learning, i.e. traffic clustering, is very important in real-life applications, where labelled training data are difficult to obtain and new patterns keep emerging. Although previous studies have applied some classic clustering algorithms such as K-Means and EM for the task, the quality of resultant traffic clusters was far from satisfactory. In order to improve the accuracy of traffic clustering, we propose a constrained clustering scheme that makes decisions with consideration of some background information in addition to the observed traffic statistics. In this talk, I will introduce the approach in detail. Specifically, we make use of equivalence set constraints indicating that particular sets of flows are using the same application layer protocols, which can be efficiently inferred from packet headers according to the background knowledge of TCP/IP networking. We model the observed data and constraints using Gaussian mixture density and adapt an approximate algorithm for the maximum likelihood estimation of model parameters. Moreover, we will discuss the effects of unsupervised feature discretization on traffic clustering by using a fundamental binning method. A number of real-world Internet traffic traces have been used for evaluation, and the results presented here will show that the proposed approach not only improves the quality of traffic clusters in terms of overall accuracy and per-class metrics, but also speeds up the convergence.

报告人简介:王宇, 2013年在澳大利亚迪肯大学网络安全与计算实验室获得计算机科学博士,目前留校从事研究工作。主要的研究领域包括网络流量建模与分类、社交网络安全、网络和系统安全、机器学习等方面。

最新动态