NEMEA: A Framework for Network Traffic Analysis
The result's identifiers
Result code in IS VaVaI
<a href="" target="_blank" >RIV/63839172:_____/16:10130747 -</a>
Result on the web
<a href="" target="_blank" ></a>
DOI - Digital Object Identifier
<a href="" target="_blank" >10.1109/CNSM.2016.7818417</a>
Alternative languages
Result language
Original language name
NEMEA: A Framework for Network Traffic Analysis
Original language description
Since network attacks become more sophisticated, it is difficult to discover them using traditional analysis tools. For some kinds of attacks, it is necessary to analyze Application Layer (L7) information in order to detect them. However, there is a lack of existing tools capable of L7 processing and manipulation. Therefore, we propose a flow-based modular Network Measurements Analysis (NEMEA) system to overcome the situation. NEMEA is designed with respect to a stream-wise concept, i. e. data are analyzed continuously in memory with minimal data storage. NEMEA is developed as an open-source project and is publicly available for world-wide community. It is designed for both experimental and operational use. It is able to process off-line traffic traces as well as live network flows. The system is very flexible and can be easily extended by new modules. The modules are developed within a NEMEA framework that is a key component of the project. NEMEA thus represents a unified platform for research and development of new traffic analysis methods. It covers several important topics not limited to analysis and detection. Some of them are described in this paper. Originally, NEMEA has been developed for the purposes of Czech National Research and Education Network operator. Therefore, it is focused on handling high speed network traffic with links working at 100 Gbps.
Czech name
Czech description
D - Article in proceedings
CEP classification
IN - Informatics
OECD FORD branch
Result continuities
Result was created during the realization of more than one project. More information in the Projects tab.
P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)
Publication year
S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů
Data specific for result type
Article name in the collection
12th International Conference on Network and Service Management (CNSM 2016)
Number of pages
Pages from-to
Publisher name
Place of publication
Montréal, Kanada
Event location
Montréal, Kanada
Event date
Oct 31, 2016
Type of event by nationality
WRD - Celosvětová akce
UT code for WoS article