Saved in:
Bibliographic Details
Main Authors: Odiathevar, Murugaraj, Yup, Kim Chung
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2502.01049
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866916594957942784
author Odiathevar, Murugaraj
Yup, Kim Chung
author_facet Odiathevar, Murugaraj
Yup, Kim Chung
contents Existing network simulations often rely on simplistic models that send packets at random intervals, failing to capture the critical role of application-level behaviour. This paper presents a statistical approach that extracts and models application behaviour using probability density functions to generate realistic network simulations. By convolving learned application patterns, the framework produces dynamic, scalable traffic representations that closely mimic real-world networks. The method enables rigorous testing of network monitoring tools and anomaly detection systems by dynamically adjusting application behaviour. It is lightweight, capable of running multiple emulated applications on a single machine, and scalable for analysing large networks where real data collection is impractical. To encourage adoption and further testing, the full code is provided as open-source, allowing researchers and practitioners to replicate and extend the framework for diverse network environments.
format Preprint
id arxiv_https___arxiv_org_abs_2502_01049
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle Simulating Application Behavior for Network Monitoring and Security
Odiathevar, Murugaraj
Yup, Kim Chung
Networking and Internet Architecture
Applications
Existing network simulations often rely on simplistic models that send packets at random intervals, failing to capture the critical role of application-level behaviour. This paper presents a statistical approach that extracts and models application behaviour using probability density functions to generate realistic network simulations. By convolving learned application patterns, the framework produces dynamic, scalable traffic representations that closely mimic real-world networks. The method enables rigorous testing of network monitoring tools and anomaly detection systems by dynamically adjusting application behaviour. It is lightweight, capable of running multiple emulated applications on a single machine, and scalable for analysing large networks where real data collection is impractical. To encourage adoption and further testing, the full code is provided as open-source, allowing researchers and practitioners to replicate and extend the framework for diverse network environments.
title Simulating Application Behavior for Network Monitoring and Security
topic Networking and Internet Architecture
Applications
url https://arxiv.org/abs/2502.01049