From: rtrimana Date: Fri, 25 Jan 2019 22:19:49 +0000 (-0800) Subject: Added time constraintsto detection. X-Git-Url: http://demsky.eecs.uci.edu/git/?a=commitdiff_plain;h=35f0b28b1dbcaf8978934640fb99b7b65e92edb6;p=pingpong.git Added time constraintsto detection. --- diff --git a/Code/Projects/SmartPlugDetector/src/main/java/edu/uci/iotproject/detection/layer2/Layer2SignatureDetector.java b/Code/Projects/SmartPlugDetector/src/main/java/edu/uci/iotproject/detection/layer2/Layer2SignatureDetector.java index ba5ec7a..a721914 100644 --- a/Code/Projects/SmartPlugDetector/src/main/java/edu/uci/iotproject/detection/layer2/Layer2SignatureDetector.java +++ b/Code/Projects/SmartPlugDetector/src/main/java/edu/uci/iotproject/detection/layer2/Layer2SignatureDetector.java @@ -51,12 +51,13 @@ public class Layer2SignatureDetector implements PacketListener, ClusterMatcherOb public static void main(String[] args) throws PcapNativeException, NotOpenException, IOException { // Parse required parameters. - if (args.length < 4) { + if (args.length < 5) { String errMsg = String.format("Usage: %s inputPcapFile onSignatureFile offSignatureFile resultsFile" + "\n inputPcapFile: the target of the detection" + "\n onSignatureFile: the file that contains the ON signature to search for" + "\n offSignatureFile: the file that contains the OFF signature to search for" + - "\n resultsFile: where to write the results of the detection", + "\n resultsFile: where to write the results of the detection" + + "\n signatureDuration: the maximum duration of signature detection", Layer2SignatureDetector.class.getSimpleName()); System.out.println(errMsg); String optParamsExplained = "Above are the required, positional arguments. In addition to these, the " + @@ -77,10 +78,11 @@ public class Layer2SignatureDetector implements PacketListener, ClusterMatcherOb final String onSignatureFile = args[1]; final String offSignatureFile = args[2]; final String resultsFile = args[3]; + final int signatureDuration = Integer.parseInt(args[4]); // Parse optional parameters. List> onSignatureMacFilters = null, offSignatureMacFilters = null; - final int optParamsStartIdx = 4; + final int optParamsStartIdx = 5; if (args.length > optParamsStartIdx) { for (int i = optParamsStartIdx; i < args.length; i++) { if (args[i].equalsIgnoreCase("-onMacFilters")) { @@ -111,9 +113,9 @@ public class Layer2SignatureDetector implements PacketListener, ClusterMatcherOb List>> onSignature = PrintUtils.deserializeSignatureFromFile(onSignatureFile); List>> offSignature = PrintUtils.deserializeSignatureFromFile(offSignatureFile); Layer2SignatureDetector onDetector = onSignatureMacFilters == null ? - new Layer2SignatureDetector(onSignature) : new Layer2SignatureDetector(onSignature, onSignatureMacFilters); + new Layer2SignatureDetector(onSignature) : new Layer2SignatureDetector(onSignature, onSignatureMacFilters, signatureDuration); Layer2SignatureDetector offDetector = offSignatureMacFilters == null ? - new Layer2SignatureDetector(offSignature) : new Layer2SignatureDetector(offSignature, offSignatureMacFilters); + new Layer2SignatureDetector(offSignature) : new Layer2SignatureDetector(offSignature, offSignatureMacFilters, signatureDuration); onDetector.addObserver((signature, match) -> { UserAction event = new UserAction(UserAction.Type.TOGGLE_ON, match.get(0).get(0).getTimestamp()); PrintWriterUtils.println(event, resultsWriter, DUPLICATE_OUTPUT_TO_STD_OUT); @@ -170,11 +172,13 @@ public class Layer2SignatureDetector implements PacketListener, ClusterMatcherOb private final List mObservers = new ArrayList<>(); + private int mInclusionTimeMillis; + public Layer2SignatureDetector(List>> searchedSignature) { - this(searchedSignature, null); + this(searchedSignature, null, 0); } - public Layer2SignatureDetector(List>> searchedSignature, List> flowFilters) { + public Layer2SignatureDetector(List>> searchedSignature, List> flowFilters, int inclusionTimeMillis) { if (flowFilters != null && flowFilters.size() != searchedSignature.size()) { throw new IllegalArgumentException("If flow filters are used, there must be a flow filter for each cluster of the signature."); } @@ -199,6 +203,8 @@ public class Layer2SignatureDetector implements PacketListener, ClusterMatcherOb mClusterMatcherIds = Collections.unmodifiableMap(clusterMatcherIds); // Register all cluster matchers to receive a notification whenever a new flow is encountered. mClusterMatchers.forEach(cm -> mFlowReassembler.addObserver(cm)); + mInclusionTimeMillis = + inclusionTimeMillis == 0 ? TriggerTrafficExtractor.INCLUSION_WINDOW_MILLIS : inclusionTimeMillis; } @Override @@ -304,7 +310,7 @@ public class Layer2SignatureDetector implements PacketListener, ClusterMatcherOb // the signature to span. For now we just use the inclusion window we defined for training purposes. // Note however, that we must convert back from double to long as the weight is stored as a double in // JGraphT's API. - if (((long)shortestPath.getWeight()) < TriggerTrafficExtractor.INCLUSION_WINDOW_MILLIS) { + if (((long)shortestPath.getWeight()) < mInclusionTimeMillis) { // There's a signature match! // Extract the match from the vertices List> signatureMatch = new ArrayList<>(); diff --git a/Code/Projects/SmartPlugDetector/src/main/java/edu/uci/iotproject/detection/layer3/SignatureDetector.java b/Code/Projects/SmartPlugDetector/src/main/java/edu/uci/iotproject/detection/layer3/SignatureDetector.java index 52e2bde..0c4324d 100644 --- a/Code/Projects/SmartPlugDetector/src/main/java/edu/uci/iotproject/detection/layer3/SignatureDetector.java +++ b/Code/Projects/SmartPlugDetector/src/main/java/edu/uci/iotproject/detection/layer3/SignatureDetector.java @@ -366,8 +366,8 @@ public class SignatureDetector implements PacketListener, ClusterMatcherObserver // SignatureDetector onDetector = new SignatureDetector(onSignature, null); // SignatureDetector offDetector = new SignatureDetector(offSignature, null); // WAN - SignatureDetector onDetector = new SignatureDetector(onSignature, "128.195.205.105"); - SignatureDetector offDetector = new SignatureDetector(offSignature, "128.195.205.105"); + SignatureDetector onDetector = new SignatureDetector(onSignature, "128.195.205.105", 0); + SignatureDetector offDetector = new SignatureDetector(offSignature, "128.195.205.105", 0); final DateTimeFormatter dateTimeFormatter = DateTimeFormatter.ofLocalizedDateTime(FormatStyle.MEDIUM). withLocale(Locale.US).withZone(ZoneId.of("America/Los_Angeles")); @@ -460,6 +460,8 @@ public class SignatureDetector implements PacketListener, ClusterMatcherObserver private final List mObservers = new ArrayList<>(); + private int mInclusionTimeMillis; + /** * Remove duplicates in {@code List} of {@code UserAction} objects. We need to clean this up for user actions * that appear multiple times. @@ -485,7 +487,7 @@ public class SignatureDetector implements PacketListener, ClusterMatcherObserver return listUserActionClean; } - public SignatureDetector(List>> searchedSignature, String routerWanIp) { + public SignatureDetector(List>> searchedSignature, String routerWanIp, int inclusionTimeMillis) { // note: doesn't protect inner lists from changes :'( mSignature = Collections.unmodifiableList(searchedSignature); // Generate corresponding/appropriate ClusterMatchers based on the provided signature @@ -505,6 +507,8 @@ public class SignatureDetector implements PacketListener, ClusterMatcherObserver clusterMatcherIds.put(mClusterMatchers.get(i), i); } mClusterMatcherIds = Collections.unmodifiableMap(clusterMatcherIds); + mInclusionTimeMillis = + inclusionTimeMillis == 0 ? TriggerTrafficExtractor.INCLUSION_WINDOW_MILLIS : inclusionTimeMillis; } public void addObserver(SignatureDetectionObserver observer) { @@ -604,7 +608,7 @@ public class SignatureDetector implements PacketListener, ClusterMatcherObserver // the signature to span. For now we just use the inclusion window we defined for training purposes. // Note however, that we must convert back from double to long as the weight is stored as a double in // JGraphT's API. - if (((long)shortestPath.getWeight()) < TriggerTrafficExtractor.INCLUSION_WINDOW_MILLIS) { + if (((long)shortestPath.getWeight()) < mInclusionTimeMillis) { // There's a signature match! // Extract the match from the vertices List> signatureMatch = new ArrayList<>();