Name
Abstract | ||
|---|---|---|
Network protocol system fingerprinting has been recognized as an important issue and a major threat to network security. Prevalent works rely largely on human experiences and insight of the protocol system specifications and implementations. Such ad-hoc approaches are inadequate in dealing with large complex protocol systems. In this paper we propose a formal approach for automated protocol system fingerprinting analysis and experiment. Parameterized Extended Finite State Machine is used to model protocol systems, and four categories of fingerprinting problems are formally defined. We propose and analyze algorithms for both active and passive fingerprinting and present our experimental results on Internet protocols. Furthermore, we investigate protection techniques against malicious fingerprinting and discuss the feasibility of two defense schemes, based on the protocol and application scenarios. |
Year | DOI | Venue |
|---|---|---|
2006 | 10.1109/INFOCOM.2006.157 | INFOCOM |
Keywords | Field | DocType |
protocol system,network security,testing,online minimization,fingerprinting,extended finite state machine,internet,computer science,fingerprint recognition,internet protocol,intrusion detection,protocols,network protocol,web server,operating systems,automata,information security | IPv6,Internet Protocol,Internet layer,Computer science,Computer network,Internet protocol suite,Dynamic circuit network,Intrusion detection system,Host Based Security System,Communications protocol,Distributed computing | Conference |
ISSN | ISBN | Citations |
0743-166X | 1-4244-0221-2 | 12 |
PageRank | References | Authors |
0.77 | 13 | 2 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Guoqiang Shu | 1 | 72 | 6.15 |
| David Lee | 2 | 195 | 21.40 |