Přehled o publikaci
2014
Identifying Operating System Using Flow-based Traffic Fingerprinting
JIRSÍK, Tomáš and Pavel ČELEDABasic information
Original name
Identifying Operating System Using Flow-based Traffic Fingerprinting
Authors
JIRSÍK, Tomáš and Pavel ČELEDA
Edition
Heidelberg, Advances in Communication Networking, Lecture Notes in Computer Science, Vol. 8846, p. 70-73, 4 pp. 2014
Publisher
Springer International Publishing
Other information
Language
English
Type of outcome
Proceedings paper
Field of Study
Informatics
Country of publisher
Germany
Confidentiality degree
is not subject to a state or trade secret
Publication form
printed version "print"
References:
Marked to be transferred to RIV
Yes
RIV identification code
RIV/00216224:14610/14:00073235
Organization
Ústav výpočetní techniky – Repository – Repository
ISBN
978-3-319-13487-1
ISSN
UT WoS
Keywords in English
OS fingerprinting; passive; high-throughput; p0f; flow
Links
VG20132015103, research and development project.
Changed: 1/9/2020 21:21, RNDr. Daniel Jakubík
Abstract
In the original language
Many vulnerabilities are operating system specific. Information about the OS of all hosts in a network represents a valuable asset for network administrators. While OS detection in small networks is an easy task, expanding the same process on a large scale becomes a challenge. The weak performance, high speed traffic and large amount of hosts for OS detection are issues to overcome. In this paper we propose a flow based framework for large scale OS detection. Furthermore, we describe the framework implementation into a flow probe, provide performance comparison and share remarks on deployment in a real world network.
