Emmanuel HerbertInstitut National des Télécommunications
Emmanuel Herbert
About
9
Publications
1,556
Reads
How we measure 'reads'
A 'read' is counted each time someone views a publication summary (such as the title, abstract, and list of authors), clicks on a figure, or views or downloads the full-text. Learn more
36
Citations
Introduction
Publications
Publications (9)
This chapter proposes to use data mining methods implemented via R in order to analyze the Domain Name System (DNS) traffic and to develop innovative techniques for balancing the DNS traffic according to Fully Qualified Domain Names (FQDN) rather than according to the Internet Protocol (IP) addresses. With DNS traffic doubling every year and the de...
Network packet transport services (namely the Internet) are
subject to significant security issues. This paper aims to apply Machine
Learning methods based on Neural Networks (Extreme Learning Machines
or ELM) to analyze the Internet traffic in order to detect specific malicious
activities. This is performed by classifying traffic for a key service...
Todays' DNS resolving platforms have been designed for DNS with fast and light resolutions over the Internet. With signature checks and larger payload, experimental measurements [10] showed that DNSSEC resolutions require up to 4 times more CPU. While DNSSEC requires more CPU than DNS, this paper proposes PREFETCHX, an architecture that optimizes t...
Todays’ DNS resolving platforms have been designed
for DNS with fast and light resolutions over the Internet. With
signature checks and larger payload, experimental measurements
[10] showed that DNSSEC resolutions require up to 4
times more CPU.
While DNSSEC requires more CPU than DNS, this paper
proposes PREFETCHX, an architecture that optimizes t...
This paper proposes to use optimization and machine learning methods in order to develop innovative techniques for balancing the DNS(SEC) traffic according to Fully Qualified Domain Names (FQDN), rather than according to the IP addresses. With DNS traffic doubling every year and the deployment of its secure extension DNSSEC, DNS resolving platforms...
DNSSEC deployment for large Internet Service Provider (ISP) is an important issue. With the current architecture, the migration of current DNS resolving platforms requires 5 times more nodes. This paper introduces alternative architectures where the DNS traffic is split between the nodes of the platform according to the queried Fully Qualified Doma...
To face the huge demand on mobile traffic, ISPs are looking to offload traffic of their Radio Access Network to WLAN. Currently I-WLAN is the proposed offload architecture by 3GPP which tunnels the traffic to a Security Gateway. This paper proposes for ISPs an ISP Offload Infrastructure which minimizes the infrastructure cost deployment, and which...
When mobile End Users are offloaded from a Radio Access Network (RAN) to a WLAN, current I-WLAN [1] offloaded architectures consider traffic converging to a common Security Gateway. In this paper, we propose an alternative End-to-End security (E2E) architecture based on the MOBIKE-X [2] protocol, which extends the MOBIKE [3] Mobility and Multihomin...