| Title | Network Protocol Reverse Parsing Based on Bit Stream |
| Publication Type | Conference Paper |
| Year of Publication | 2021 |
| Authors | Li, Yang, Bai, Liyun, Zhang, Mingqi, Wang, Siyuan, Wu, Jing, Jiang, Hao |
| Conference Name | 2021 8th IEEE International Conference on Cyber Security and Cloud Computing (CSCloud)/2021 7th IEEE International Conference on Edge Computing and Scalable Cloud (EdgeCom) |
| Date Published | jun |
| Keywords | association rules, cloud computing, Clustering algorithms, Computer crime, Conferences, cyber security, hierarchical clustering, Pattern recognition, Protocols, pubcrawl, reverse parsing, Scalability, Scalable Security, security, Syntactics |
| Abstract | The network security problem brought by the cloud computing has become an important issue to be dealt with in information construction. Since anomaly detection and attack detection in cloud environment need to find the vulnerability through the reverse analysis of data flow, it is of great significance to carry out the reverse analysis of unknown network protocol in the security application of cloud environment. To solve this problem, an improved mining method on bitstream protocol association rules with unknown type and format is proposed. The method combines the location information of the protocol framework to make the frequent extraction process more concise and accurate. In addition, for the frame separation problem of unknown protocol, we design a hierarchical clustering algorithm based on Jaccard distance and a frame field delimitation method based on the proximity of information entropy between bytes. The experimental results show that this technology can correctly resolve the protocol format and realize the purpose of anomaly detection in cloud computing, and ensure the security of cloud services. |
| DOI | 10.1109/CSCloud-EdgeCom52276.2021.00025 |
| Citation Key | li_network_2021 |
Network Protocol Reverse Parsing Based on Bit Stream