{"id":"https://openalex.org/W3209546907","doi":"https://doi.org/10.1109/ccci52664.2021.9583191","title":"A Survey of Encrypted Malicious Traffic Detection","display_name":"A Survey of Encrypted Malicious Traffic Detection","publication_year":2021,"publication_date":"2021-10-15","ids":{"openalex":"https://openalex.org/W3209546907","doi":"https://doi.org/10.1109/ccci52664.2021.9583191","mag":"3209546907"},"language":"en","primary_location":{"id":"doi:10.1109/ccci52664.2021.9583191","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ccci52664.2021.9583191","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 International Conference on Communications, Computing, Cybersecurity, and Informatics (CCCI)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5078651991","display_name":"Yanmiao Li","orcid":null},"institutions":[{"id":"https://openalex.org/I139759216","display_name":"Beijing University of Posts and Telecommunications","ror":"https://ror.org/04w9fbh59","country_code":"CN","type":"education","lineage":["https://openalex.org/I139759216"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Yanmiao Li","raw_affiliation_strings":["Center of Information Security, Beijing University of Posts and Telecommunications, Beijing, China"],"affiliations":[{"raw_affiliation_string":"Center of Information Security, Beijing University of Posts and Telecommunications, Beijing, China","institution_ids":["https://openalex.org/I139759216"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5007094992","display_name":"Hao Guo","orcid":"https://orcid.org/0000-0001-6768-6068"},"institutions":[{"id":"https://openalex.org/I154099455","display_name":"Shandong University","ror":"https://ror.org/0207yh398","country_code":"CN","type":"education","lineage":["https://openalex.org/I154099455"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hao Guo","raw_affiliation_strings":["School of information science and engineering, Shandong University, Qingdao, China"],"affiliations":[{"raw_affiliation_string":"School of information science and engineering, Shandong University, Qingdao, China","institution_ids":["https://openalex.org/I154099455"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047260329","display_name":"Jiangang Hou","orcid":null},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jiangang Hou","raw_affiliation_strings":["School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072282421","display_name":"Zhen Zhang","orcid":"https://orcid.org/0000-0002-6512-1458"},"institutions":[{"id":"https://openalex.org/I4210131247","display_name":"Shandong Police College","ror":"https://ror.org/02k75d319","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210131247"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhen Zhang","raw_affiliation_strings":["Shandong Police College, Jinan, China"],"affiliations":[{"raw_affiliation_string":"Shandong Police College, Jinan, China","institution_ids":["https://openalex.org/I4210131247"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5079935354","display_name":"Tongqing Jiang","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Tongqing Jiang","raw_affiliation_strings":["Shandong Gentle Tecchnology co., Ltd, Jinan, China"],"affiliations":[{"raw_affiliation_string":"Shandong Gentle Tecchnology co., Ltd, Jinan, China","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100382302","display_name":"Zhi Liu","orcid":"https://orcid.org/0000-0002-7640-5982"},"institutions":[{"id":"https://openalex.org/I154099455","display_name":"Shandong University","ror":"https://ror.org/0207yh398","country_code":"CN","type":"education","lineage":["https://openalex.org/I154099455"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhi Liu","raw_affiliation_strings":["School of information science and engineering, Shandong University, Qingdao, China"],"affiliations":[{"raw_affiliation_string":"School of information science and engineering, Shandong University, Qingdao, China","institution_ids":["https://openalex.org/I154099455"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5078651991"],"corresponding_institution_ids":["https://openalex.org/I139759216"],"apc_list":null,"apc_paid":null,"fwci":1.3597,"has_fulltext":false,"cited_by_count":13,"citation_normalized_percentile":{"value":0.84790825,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"7"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.9074727296829224},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7060061693191528},{"id":"https://openalex.org/keywords/traffic-classification","display_name":"Traffic classification","score":0.5185704827308655},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5117404460906982},{"id":"https://openalex.org/keywords/traffic-analysis","display_name":"Traffic analysis","score":0.43486765027046204},{"id":"https://openalex.org/keywords/hotspot","display_name":"Hotspot (geology)","score":0.41807591915130615},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3239462971687317},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.07039600610733032}],"concepts":[{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.9074727296829224},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7060061693191528},{"id":"https://openalex.org/C169988225","wikidata":"https://www.wikidata.org/wiki/Q7832484","display_name":"Traffic classification","level":3,"score":0.5185704827308655},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5117404460906982},{"id":"https://openalex.org/C2781317605","wikidata":"https://www.wikidata.org/wiki/Q7832483","display_name":"Traffic analysis","level":2,"score":0.43486765027046204},{"id":"https://openalex.org/C146481406","wikidata":"https://www.wikidata.org/wiki/Q105131","display_name":"Hotspot (geology)","level":2,"score":0.41807591915130615},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3239462971687317},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.07039600610733032},{"id":"https://openalex.org/C8058405","wikidata":"https://www.wikidata.org/wiki/Q46255","display_name":"Geophysics","level":1,"score":0.0},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ccci52664.2021.9583191","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ccci52664.2021.9583191","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 International Conference on Communications, Computing, Cybersecurity, and Informatics (CCCI)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":22,"referenced_works":["https://openalex.org/W1909234690","https://openalex.org/W1986927720","https://openalex.org/W2031163547","https://openalex.org/W2143612262","https://openalex.org/W2150837046","https://openalex.org/W2163605009","https://openalex.org/W2343828539","https://openalex.org/W2518895230","https://openalex.org/W2537766808","https://openalex.org/W2597441556","https://openalex.org/W2618530766","https://openalex.org/W2743678626","https://openalex.org/W2744601386","https://openalex.org/W2897202622","https://openalex.org/W2899918705","https://openalex.org/W2900659115","https://openalex.org/W2901479405","https://openalex.org/W2912711574","https://openalex.org/W2996798774","https://openalex.org/W3012262239","https://openalex.org/W3045578090","https://openalex.org/W3095349405"],"related_works":["https://openalex.org/W2179036394","https://openalex.org/W4206905835","https://openalex.org/W2613715541","https://openalex.org/W3166874438","https://openalex.org/W3171671300","https://openalex.org/W4289314221","https://openalex.org/W4293088549","https://openalex.org/W4206366499","https://openalex.org/W2188471597","https://openalex.org/W2964663688"],"abstract_inverted_index":{"With":[0],"more":[1,3],"and":[2,81,118,126],"encrypted":[4,9,22,42,56,65,76,91],"traffic":[5,10,24,44,58,93],"such":[6],"as":[7,96],"HTTPS,":[8],"protects":[11],"not":[12],"only":[13],"normal":[14],"traffic,":[15,78],"but":[16],"also":[17],"malicious":[18,23,43,57,66,77,92],"traffic.":[19,67],"Identification":[20],"of":[21,39,55,75,111],"without":[25],"decryption":[26],"has":[27,46],"become":[28],"a":[29],"research":[30,130],"hotspot.":[31],"Combined":[32],"with":[33,90],"deep":[34],"learning,":[35,41],"an":[36],"important":[37],"branch":[38],"machine":[40],"detection":[45,54,94,104],"achieved":[47],"good":[48],"results.":[49],"This":[50],"paper":[51],"reviews":[52],"the":[53,72,79,97,102,107,124],"in":[59],"recent":[60],"years.":[61],"Firstly,":[62],"we":[63,69,84,100,122],"classify":[64],"Secondly,":[68],"sorts":[70],"out":[71,128],"extraction":[73],"characteristics":[74],"key":[80],"difficult":[82],"problems":[83,125],"are":[85],"facing":[86],"at":[87],"present.":[88],"Then,":[89],"technology":[95],"main":[98],"line,":[99],"summarized":[101],"current":[103],"model":[105,116],"from":[106],"four":[108],"core":[109],"aspects":[110],"data":[112,114],"collection,":[113],"processing,":[115],"training":[117],"evaluation":[119],"improvement.":[120],"Finally,":[121],"analyze":[123],"point":[127],"future":[129],"directions.":[131]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":6},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":1}],"updated_date":"2026-02-25T08:12:03.925757","created_date":"2025-10-10T00:00:00"}