| 协议规范挖掘研究综述 |
| |
| 引用本文: | 张 钊,温巧燕,唐 文.协议规范挖掘研究综述[J].计算机工程与应用,2013,49(9):1-9. |
| |
| 作者姓名: | 张 钊 温巧燕 唐 文 |
| |
| 作者单位: | 1.北京邮电大学 网络与交换技术国家重点实验室,北京 100876
2.西门子(中国)研究院,北京 100102 |
| |
| 摘 要: | 针对网络安全领域中的协议规范挖掘问题,通过对近十年相关文献的研究,将此问题进行了规范的形式化定义,根据协议规范的作用域将其分为两个层面:报文内部的格式、语义规范挖掘与报文之间的协议行为规范挖掘。针对每个层面研究中涉及到的方法与技术,给出了概要的分析介绍、评价及应用场景。针对目前研究的不足与应用需求,对整个协议规范挖掘的研究趋势进行了展望。
|
| 关 键 词: | 协议规范 逆向工程 报文格式 行为建模 文法推断 自动机学习 |
Survey of mining protocol specifications |
| |
| ZHANG Zhao,WEN Qiaoyan,TANG Wen.Survey of mining protocol specifications[J].Computer Engineering and Applications,2013,49(9):1-9. |
| |
| Authors: | ZHANG Zhao WEN Qiaoyan TANG Wen |
| |
| Affiliation: | 1.State Key Lab of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China
2.Cooperate Technology, Siemens (China) Ltd, Beijing 100102, China |
| |
| Abstract: | As for the problem of mining unknown protocol specifications in the research fields of network security, this paper proposes the formal definition of research problem and divides the current research into two layers according to the scope of specification:format, semantic mining in packets and behavior mining among packets. It discusses current technologies, evaluations and application scenarios in the two research layers. It summarizes future research trends based on the disadvantages of current solutions and requirements of application. |
| |
| Keywords: | protocol specification reverse engineering packet format behavior modeling grammatical inference automation learning |
|
| 点击此处可从《计算机工程与应用》浏览原始摘要信息 |
|
点击此处可从《计算机工程与应用》下载全文 |
