| 基于统计分析的协议报文格式推测 |
| |
| 引用本文: | 詹 成,张 伟.基于统计分析的协议报文格式推测[J].电子信息对抗技术,2014(1):9-12. |
| |
| 作者姓名: | 詹 成 张 伟 |
| |
| 作者单位: | 电子信息控制重点实验室,成都610036 |
| |
| 摘 要: | 利用网络协议格式进行解析可以提取出网络传输的关键数据信息,但是传统的协议解析工具无法自动解析协议报文格式未知的数据流,而要依赖于耗时巨大的人工操作推测未知协议格式。提出一种基于统计分析的自动未知协议报文格式推测算法,可以根据数据流进行统计分析,推测出数据流的协议报文格式。利用真实网络数据进行的实验表明,该算法可以有效地进行未知协议报文格式推断。
|
| 关 键 词: | 协议报文 格式推测 统计分析 |
Inferring Protocol Packet Format Based on Statistical Analysis |
| |
| Authors: | ZHAN Cheng ZHANG Wei |
| |
| Affiliation: | ( Science and Technology on Electronic Information Control Laboratory, Chengdu 610036, China) |
| |
| Abstract: | Network protocol is very important to network security. With the network data flow, the important data information could be received using protocol analysis based on the protocol specifications. However, the data flow with unknown protocol formats could not be analyzed with traditional protocol analysis tools, current methods for obtaining unknown protocol specifications mainly rely on time-consuming and laborious manual operations. An auto protocol packet format inferring algorithm is proposed based on the statistical analysis of data flow. Experiment results on the real network flow states that this algorithm performs efficiently on inferring protocol packet format. |
| |
| Keywords: | packet format statistical analysis protocol inferring |
| 本文献已被 CNKI 维普 等数据库收录! |
|
