An Attack Traffic Identification Method Based on Temporal Spectrum
This work addresses network security issues for systems vulnerable to attack traffic, but it is incremental as it builds on existing detection models.
The paper tackled the problem of insufficient robustness and unstable features in network attack detection by proposing a temporal spectrum-based method, which improved identification accuracy by 10% compared to traditional methods and showed strong robustness in noisy environments.
To address the issues of insufficient robustness, unstable features, and data noise interference in existing network attack detection and identification models, this paper proposes an attack traffic detection and identification method based on temporal spectrum. First, traffic data is segmented by a sliding window to construct a feature sequence and a corresponding label sequence for network traffic. Next, the proposed spectral label generation methods, SSPE and COAP, are applied to transform the label sequence into spectral labels and the feature sequence into temporal features. Spectral labels and temporal features are used to capture and represent behavioral patterns of attacks. Finally, the constructed temporal features and spectral labels are used to train models, which subsequently detects and identifies network attack behaviors. Experimental results demonstrate that compared to traditional methods, models trained with the SSPE or COAP method improve identification accuracy by 10%, and exhibit strong robustness, particularly in noisy environments.