Design and Implementation of an Anomaly Network Traffic Detection Model Integrating Temporal and Spatial Features

<table class="algorithm-group"><tr><td><table class="algorithm" id="alg1"><tr><td> </td><td>Input: network traffic pcap files.</td></tr><tr><td> </td><td>Output: completed data of the raw traffic and their labels.</td></tr><tr><td> </td><td>For each pcap do</td></tr><tr><td> </td><td> Create seven null lists srcip = [], dstip = [], sport = [], proto = [], raw data = [], labels = [].</td></tr><tr><td> </td><td> If the five-tuple information of traffic packet could be found in the attack labels</td></tr><tr><td> </td><td>  Trim source IP into the list srcip.</td></tr><tr><td> </td><td>  Trim destination IP into the list dstip.</td></tr><tr><td> </td><td>  Trim source port into the list sport.</td></tr><tr><td> </td><td>  Trim destination port into the list dport.</td></tr><tr><td> </td><td>  Trim protocol into the list proto.</td></tr><tr><td> </td><td>  Get packet data into the list raw data.</td></tr><tr><td> </td><td>  Get label into the list labels.</td></tr><tr><td> </td><td> Add above lists to the csv file, and the file name is named based on the date.</td></tr><tr><td> </td><td>END if</td></tr><tr><td> </td><td>END for</td></tr></table></td></tr></table>

Security and Communication Networks

alg1

Algorithm 1

Algorithm 1: Design and Implementation of an Anomaly Network Traffic Detection Model Integrating Temporal and Spatial Features 