Please use this identifier to cite or link to this item: http://hdl.handle.net/2381/40147
Full metadata record
DC FieldValueLanguage
dc.contributor.authorEsoul, Othman-
dc.contributor.authorWalkinshaw, Neil-
dc.date.accessioned2017-08-10T15:14:58Z-
dc.date.available2017-09-23T01:45:08Z-
dc.date.issued2017-08-15-
dc.identifier.citationIEEE International Conference on Quality, Reliability and Security, 2017en
dc.identifier.isbn978-1-5386-0593-6-
dc.identifier.urihttp://ieeexplore.ieee.org/document/8009943/en
dc.identifier.urihttp://hdl.handle.net/2381/40147-
dc.description.abstractMany applications in security, from understanding unfamiliar protocols to fuzz-testing and guarding against potential attacks, rely on analysing network protocols. In many situations we cannot rely on access to a specification or even an implementation of the protocol, and must instead rely on raw network data “sniffed” from the network. When this is the case, one of the key challenges is to discern from the raw data the underlying packet structures – a task that is commonly carried out by using alignment algorithms to identify commonalities (e.g. field delimiters) between packets. For this, most approaches have used variants of the Needleman Wunsch algorthm to perform byte-wise alignment. However, they can suffer when messages are heterogeneous, or in cases where protocol fields are separated by long variable fields. In this paper, we present an alternative alignment algorithm known as segment-based alignment. We show how this technique can produce accurate results on traces from several common protocols, and how the results tend to be more intuitive than those produced by state-of-the-art techniques.en
dc.language.isoenen
dc.publisherIEEEen
dc.rightsCopyright © 2017, IEEE. Deposited with reference to the publisher’s open access archiving policy.en
dc.titleUsing Segment-Based Alignment to Extract Packet Structures from Network Tracesen
dc.typeConference Paperen
dc.identifier.doi10.1109/QRS.2017.49-
dc.description.statusPeer-revieweden
dc.description.versionPost-printen
dc.description.presentedIEEE International Conference on Quality, Reliability and Security QRS 2017en
pubs.organisational-group/Organisationen
pubs.organisational-group/Organisation/COLLEGE OF SCIENCE AND ENGINEERINGen
pubs.organisational-group/Organisation/COLLEGE OF SCIENCE AND ENGINEERING/Department of Computer Scienceen
dc.identifier.eisbn978-1-5386-0592-9-
dc.dateaccepted2017-05-24-
Appears in Collections:Conference Papers & Presentations, Dept. of Computer Science

Files in This Item:
File Description SizeFormat 
qrs-2017.pdfPost-review (final submitted author manuscript)287.15 kBAdobe PDFView/Open


Items in LRA are protected by copyright, with all rights reserved, unless otherwise indicated.