期刊文献+

协议状态机推断技术研究进展 被引量:8

Overview on protocol state machine inference: a survey
下载PDF
导出
摘要 介绍了协议逆向工程中协议状态机推断的研究进展。从状态机推断与正则语言学习的关系出发,分析了协议状态机推断的目标与需求;然后依据分析对象不同,将协议状态机推断分为基于指令序列和报文序列两大类,进一步将基于报文序列的状态机推断分为主动推断和被动推断两种;研究分析了各层面涉及到的方法与技术,并作出了评价与比较。最后对协议状态机推断研究的发展趋势进行了展望。 This paper reviewed the research and development on protocol state machine inference in protocol reverse engineering. Firstly, this paper summarized the goals and needs of protocol state machine inference by analyzing the relationship between state machine inference and regular language learning. Due to different analyzing objects, it classified the research into two categories, namely the execution trace-based and network trace-based protocol state machine inference. In addition, it di- vided the later one into active and passive inference. And then this paper introduced, evaluated and compared the key method in different researches based on this classification. Finally, it analyzed some important directions of the research on protocol state machine inference in future.
出处 《计算机应用研究》 CSCD 北大核心 2015年第7期1931-1936,共6页 Application Research of Computers
基金 江苏省自然科学基金资助项目(BK2011115 BK20131069)
关键词 协议逆向工程 协议状态机推断 正则语言学习 指令序列 报文序列 protocol reverse engineering protocol state machine inference regular language learning execution trace network trace
  • 相关文献

参考文献46

二级参考文献140

  • 1赵咏,姚秋林,张志斌,郭莉,方滨兴.TPCAD:一种文本类多协议特征自动发现方法[J].通信学报,2009,30(S1):28-35. 被引量:10
  • 2刘立芳,霍红卫,王宝树.PHGA-COFFEE:多序列比对问题的并行混合遗传算法求解[J].计算机学报,2006,29(5):727-733. 被引量:11
  • 3Borisov N, Brumley D, Wang H J, et al.A generic applica- tion-level protocol analyzer and its language[C]//Proceedings of the 14th Anuual Network & Distributed System Security Sym- posium, NDSS, 2007.
  • 4Pang R, Paxson V, Somer R, et al.Binpac: A YACC for writing application protocol parzers[C]//Proceedings of the 2006 Inter- net Measurement Conference,2006.
  • 5Dreger H, Feldmann A, Mai M, et al.Dynamic application-layer protocol analysis for network intrusion detection[C]//-tSSENIX Security Symposium, Vancouver, Canada, 2006.
  • 6Cui W,Paxson V,Weaver C,et al.Protocol independent adaptivereplay of application dialog[C]//Proceedings of Network and Distributed System Security Symposium, San Diago,CA,2006.
  • 7Cui W,Kannan J,Wang J H.Discoveror:Automatic protocol de- scription generation from network traces[C]//USENIX Security Symposium, Boston, MA, 2007.
  • 8Kannan J, Jung J, Paxson V, et al.Semi-automated discovery of application session structure[C]//Intemet Measurement Confer- ence,Rio de Janeiro,Brazil,2006.
  • 9Caballero J,Yin H,Liang Z, et al.Polyglot:Automatic extraction of protocol message format using dynamic binary analysis[C]// Proceedings of the 14th ACM Conference on Computer and Communications Security,CCS,October 2007.
  • 10Newsome J, Brumley D, Franklin J, et al.Replayer: Automatic protocol replay by binary analysis[C]//Proc ACM CCS'06,Alex- andria, Virginia, 2006.

共引文献128

同被引文献67

引证文献8

二级引证文献21

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部