Data representation model for in-depth analysis of network traffic


Дәйексөз келтіру

Толық мәтін

Ашық рұқсат Ашық рұқсат
Рұқсат жабық Рұқсат берілді
Рұқсат жабық Тек жазылушылар үшін

Аннотация

This paper proposes a new object model of data for the in-depth analysis of network traffic. In contrast to the model used by most modern network analyzers (for example, Wireshark and Snort), the proposed model supports data stream reassembling with subsequent parsing. The model also provides a convenient universal mechanism for binding parsers, thus making it possible to develop completely independent parsers. Moreover, the proposed model allows processing modified—compressed or encrypted—data. This model forms the basis of the infrastructure for the in-depth analysis of network traffic.

Авторлар туралы

I. Get’man

Institute for System Programming

Хат алмасуға жауапты Автор.
Email: thorin@ispras.ru
Ресей, ul. Solzhenitsyna 25, Moscow, 109004

V. Ivannikov

Institute for System Programming; Moscow State University; Moscow Institute of Physics and Technology; National Research University Higher School of Economics

Email: thorin@ispras.ru
Ресей, ul. Solzhenitsyna 25, Moscow, 109004; Moscow, 119991; Institutskii per. 9, Dolgoprudnyi, Moscow oblast, 141700; ul. Myasnitskaya 20, Moscow, 101000

Yu. Markin

Institute for System Programming

Email: thorin@ispras.ru
Ресей, ul. Solzhenitsyna 25, Moscow, 109004

V. Padaryan

Institute for System Programming; Moscow State University

Email: thorin@ispras.ru
Ресей, ul. Solzhenitsyna 25, Moscow, 109004; Moscow, 119991

A. Tikhonov

Institute for System Programming

Email: thorin@ispras.ru
Ресей, ul. Solzhenitsyna 25, Moscow, 109004

Қосымша файлдар

Қосымша файлдар
Әрекет
1. JATS XML
Жүктеу

© Pleiades Publishing, Ltd., 2016