D 2014

Identifying Operating System Using Flow-based Traffic Fingerprinting

JIRSÍK, Tomáš and Pavel ČELEDA

Basic information

Original name

Identifying Operating System Using Flow-based Traffic Fingerprinting

Authors

JIRSÍK, Tomáš and Pavel ČELEDA

Edition

Heidelberg, Advances in Communication Networking, Lecture Notes in Computer Science, Vol. 8846, p. 70-73, 4 pp. 2014

Publisher

Springer International Publishing

Other information

Language

English

Type of outcome

Proceedings paper

Field of Study

Informatics

Country of publisher

Germany

Confidentiality degree

is not subject to a state or trade secret

Publication form

printed version "print"

References:

URL

Marked to be transferred to RIV

Yes

RIV identification code

RIV/00216224:14610/14:00073235

Organization

Ústav výpočetní techniky – Repository – Repository

ISBN

978-3-319-13487-1

ISSN

UT WoS

000354693000007

Keywords in English

OS fingerprinting; passive; high-throughput; p0f; flow

Links

VG20132015103, research and development project.
Changed: 1/9/2020 21:21, RNDr. Daniel Jakubík

Abstract

In the original language

Many vulnerabilities are operating system specific. Information about the OS of all hosts in a network represents a valuable asset for network administrators. While OS detection in small networks is an easy task, expanding the same process on a large scale becomes a challenge. The weak performance, high speed traffic and large amount of hosts for OS detection are issues to overcome. In this paper we propose a flow based framework for large scale OS detection. Furthermore, we describe the framework implementation into a flow probe, provide performance comparison and share remarks on deployment in a real world network.
Displayed: 4/5/2026 15:12