A comparative study of traffic generators: applicability for malware detection testbeds

Matthew Swann, Joseph Rose, Gueltoum Bendiab, Stavros Shiaeles, Nick Savage

Research output: Contribution to journalArticlepeer-review

105 Downloads (Pure)

Abstract

Network traffic generators are invaluable tools that allow for applied experimentation to evaluate the performance of networks, infrastructure, and security controls, by modelling and simulating the communication packets and payloads that would be produced by machines and devices on the network. Specifically for security applications, these tools can be used to consistently simulate malicious activity on the network and test the components designed to detect and mitigate malicious activities, in a highly reliable and customisable way. However, despite the promising features, most of these tools have some problems that can undermine the correctness of experiments. The accuracy of the simulation results depends strongly on the performance and reliability of the used generator. Thus, in this paper, we investigate the performance and accuracy of three of the most reviewed network traffic generators in literature, namely Cisco TRex, Ostinato and Genesids. Mainly, the comparative experiments examine the strengths and limitations of these tools, for malicious traffic- which can help the research community to choose the most suitable one to assess the performance of their networks and security controls.
Original languageEnglish
Pages (from-to)705-713
Number of pages9
JournalJournal of Internet Technology and Secured Transactions
Volume8
DOIs
Publication statusPublished - 22 Feb 2021

Fingerprint

Dive into the research topics of 'A comparative study of traffic generators: applicability for malware detection testbeds'. Together they form a unique fingerprint.

Cite this