Exploring NAT Detection and Host Identification Using Machine Learning
| dc.contributor.author | Ali Safari Khatouni | |
| dc.contributor.author | Lan Zhang | |
| dc.contributor.author | Khurram Aziz | |
| dc.contributor.author | Ibrahim Zincir | |
| dc.contributor.author | Nur Zincir-Heywood | |
| dc.contributor.editor | H Lutfiyya | |
| dc.contributor.editor | YX Diao | |
| dc.contributor.editor | N Zincir-Heywood | |
| dc.contributor.editor | R Badonnel | |
| dc.contributor.editor | E Madeira V Getov | |
| dc.contributor.editor | JL Gaudiot | |
| dc.contributor.editor | N Yamai | |
| dc.contributor.editor | S Cimato | |
| dc.contributor.editor | M Chang | |
| dc.contributor.editor | Y Teranishi | |
| dc.contributor.editor | JJ Yang | |
| dc.contributor.editor | HV Leong | |
| dc.contributor.editor | H Shahriar | |
| dc.contributor.editor | M Takemoto | |
| dc.contributor.editor | D Towey | |
| dc.contributor.editor | H Takakura | |
| dc.contributor.editor | A Elci | |
| dc.contributor.editor | Susumu | |
| dc.contributor.editor | S Puri | |
| dc.coverage.spatial | 15th Int Conf on Network and Serv Management (CNSM) / 1st Int Workshop on Analyt for Serv and Application Management (AnServApp) / Int Workshop on High-Precision Networks Operat and Control Segment Routing and Serv Function Chaining (HiPNet+SR/SFC) | |
| dc.date.accessioned | 2025-10-06T16:21:24Z | |
| dc.date.issued | 2019 | |
| dc.description.abstract | The usage of Network Address Translation (NAT) devices is common among end users organizations and Internet Service Providers. NAT provides anonymity for users within an organization by replacing their internal IP addresses with a single external wide area network address. While such anonymity provides an added measure of security for legitimate users it can also be taken advantage of by malicious users hiding behind NAT devices. Thus identifying NAT devices and hosts behind them is essential to detect malicious behaviors in traffic and application usage. In this paper we propose a machine learning based solution to detect hosts behind NAT devices by using flow level statistics (excluding IP addresses port numbers and application layer information) from passive traffic measurements. We capture a large dataset and perform an extensive evaluation of our proposed approach with four existing approaches from the literature. Our results show that the proposed approach could identify NAT behaviors and hosts not only with higher accuracy but also demonstrates the impact of parameter sensitivity of the proposed approach. | |
| dc.identifier.doi | 10.23919/cnsm46954.2019.9012684 | |
| dc.identifier.isbn | 978-3-903176-24-9 | |
| dc.identifier.issn | 2165-9605 | |
| dc.identifier.uri | http://dx.doi.org/10.23919/cnsm46954.2019.9012684 | |
| dc.identifier.uri | https://gcris.yasar.edu.tr/handle/123456789/6855 | |
| dc.language.iso | English | |
| dc.publisher | IEEE | |
| dc.relation.ispartof | 15th Int Conf on Network and Serv Management (CNSM) / 1st Int Workshop on Analyt for Serv and Application Management (AnServApp) / Int Workshop on High-Precision Networks Operat and Control Segment Routing and Serv Function Chaining (HiPNet+SR/SFC) | |
| dc.source | 2019 15TH INTERNATIONAL CONFERENCE ON NETWORK AND SERVICE MANAGEMENT (CNSM) | |
| dc.title | Exploring NAT Detection and Host Identification Using Machine Learning | |
| dc.type | Conference Object | |
| dspace.entity.type | Publication | |
| gdc.bip.impulseclass | C4 | |
| gdc.bip.influenceclass | C5 | |
| gdc.bip.popularityclass | C4 | |
| gdc.coar.type | text::conference output | |
| gdc.collaboration.industrial | false | |
| gdc.description.endpage | 8 | |
| gdc.description.startpage | 1 | |
| gdc.identifier.openalex | W3010585105 | |
| gdc.index.type | WoS | |
| gdc.oaire.diamondjournal | false | |
| gdc.oaire.impulse | 6.0 | |
| gdc.oaire.influence | 2.9587266E-9 | |
| gdc.oaire.isgreen | false | |
| gdc.oaire.popularity | 5.6582055E-9 | |
| gdc.oaire.publicfunded | false | |
| gdc.oaire.sciencefields | 0202 electrical engineering, electronic engineering, information engineering | |
| gdc.oaire.sciencefields | 02 engineering and technology | |
| gdc.openalex.collaboration | International | |
| gdc.openalex.fwci | 1.1201 | |
| gdc.openalex.normalizedpercentile | 0.84 | |
| gdc.opencitations.count | 13 | |
| gdc.plumx.crossrefcites | 1 | |
| gdc.plumx.mendeley | 14 | |
| gdc.plumx.scopuscites | 18 | |
| project.funder.name | Natural Science and Engineering Research Council of Canada (NSERC) | |
| relation.isOrgUnitOfPublication | ac5ddece-c76d-476d-ab30-e4d3029dee37 | |
| relation.isOrgUnitOfPublication.latestForDiscovery | ac5ddece-c76d-476d-ab30-e4d3029dee37 |