Detection of network protocols with application of machine learning methods and fuzzy logic algorithms in traffic analysis systems

This article presents a new effective approach to analyzing network traffic in order to determine the protocol of information exchange. A brief description of the structure of the algorithm
for classifying network packets by belonging to one of the known network protocols is given. To
define the protocol, the principle of high-speed one-packet classification is used, which consists
in analyzing the information transmitted in each particular packet. Elements of behavioral
analysis are used, namely, the transition states of information exchange protocols are classified,
which allows to achieve a higher level of accuracy of classification and a higher degree of generalization in new test samples. Fuzzy logic algorithms and neural networks are used. The test
results of the constructed software module capable of identifying network protocols for information exchange are demonstrated.