[转载]Peer-to-Peer (P2P) Behaviour Detection by TCP Flows Analysis
信息来源:[url]http://www.run.montefiore.ulg.ac.be/~soldani/[/url]We first present P2P networks in general and some popular file-sharing systems. We then discuss different techniques to try to measure P2P traffic. We analyse results of measurement of P2P traffic and we try to derive a characterisation of P2P behaviour based on these results. Our characterisation is based on the existence of an application layer overlay network between peers. We test our characterisation in a practical case. We develop a detector for eDonkey traffic under Linux based on NetFlow traces. This detector is tested against traces from the traffic of University of Liege. We show than our characterisation allows a significant gain for the detection of P2P traffic volume and we discuss performance of our detector. Finally, possible improvements and suggestions for further work are proposed.
页:
[1]