Research on OS fingerprinting Method for Real-time Traffic Analysis System

Hyun-shin Lee; Myung-sup Kim

Research on OS fingerprinting Method for Real-time Traffic Analysis System

Hyun-shin Lee

Myung-sup Kim

Vol. 36, No. 5, pp. 443-450, May 2011

PDF

Abstract

The Internet has become an essential part in our modern life by providing useful information. So, the volume of Internent traffic has been increasing rapidly, which emphasizes the importance of network traffic analysis for effective network operation and management. Signature based analysis have been commonly used, but it is shown that the increase of signatures due to the increase of applications causes the performance degradation of real-time traffic analysis on high-speed network links. In this paper, we propose OS fingerprinting method for real-time traffic analysis. The previous problems can be solved by utilizing the OS information. The OS fingerprinting method for real-time traffic analysis, proposed in this paper, conducts under passive mode, and improves the limitation of a previous method such as low completeness and accuracy. In this paper, we enlarged an input data to improve completeness, and used the User-Agent field in HTTP packet to extract various OS signatures. Also, we changed an input data from packet to flow to improve accuracy.

Statistics

Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

H. Lee and M. Kim, "Research on OS fingerprinting Method for Real-time Traffic Analysis System," The Journal of Korean Institute of Communications and Information Sciences, vol. 36, no. 5, pp. 443-450, 2011. DOI: .

[ACM Style]

Hyun-shin Lee and Myung-sup Kim. 2011. Research on OS fingerprinting Method for Real-time Traffic Analysis System. The Journal of Korean Institute of Communications and Information Sciences, 36, 5, (2011), 443-450. DOI: .

[KICS Style]

Hyun-shin Lee and Myung-sup Kim, "Research on OS fingerprinting Method for Real-time Traffic Analysis System," The Journal of Korean Institute of Communications and Information Sciences, vol. 36, no. 5, pp. 443-450, 5. 2011.

Research on OS fingerprinting Method for Real-time Traffic Analysis System

Submenu

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

Recent Publications
(LAST 3 YEARS)

Research on OS fingerprinting Method for Real-time Traffic Analysis System

Submenu

Search (IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS(TOP 10 KEYWORDS)

Recent Publications(LAST 3 YEARS)

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)