Unsupervised Clustering Under Temporal Feature Volatility in Network Stack Fingerprinting
| Title | Unsupervised Clustering Under Temporal Feature Volatility in Network Stack Fingerprinting |
| Publication Type | Conference Paper |
| Year of Publication | 2016 |
| Authors | Shamsi, Zain, Loguinov, Dmitri |
| Conference Name | Proceedings of the 2016 ACM SIGMETRICS International Conference on Measurement and Modeling of Computer Science |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-4266-7 |
| Keywords | internet measurement, Measurement, Metrics, os classification, os fingerprinting, privacy models, privacy models and measurement, pubcrawl |
| Abstract | Maintaining and updating signature databases is a tedious task that normally requires a large amount of user effort. The problem becomes harder when features can be distorted by observation noise, which we call volatility. To address this issue, we propose algorithms and models to automatically generate signatures in the presence of noise, with a focus on stack fingerprinting, which is a research area that aims to discover the operating system (OS) of remote hosts using TCP/IP packets. Armed with this framework, we construct a database with 420 network stacks, label the signatures, develop a robust classifier for this database, and fingerprint 66M visible webservers on the Internet. |
| URL | http://doi.acm.org/10.1145/2896377.2901449 |
| DOI | 10.1145/2896377.2901449 |
| Citation Key | shamsi_unsupervised_2016 |