Skip to Main content Skip to Navigation
Theses

Robustesse et Identification des Applications Communicantes

Jérôme François 1
1 MADYNES - Management of dynamic networks and services
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : The growth of computer networks like the Internet entailed a huge increase of networked applications and the apparition of multiple, various protocols. Their functioning complexity is very variable implying diverse performances. The first objective of this PhD thesis is to evaluate precisely the robustness of those networked applications, which are known to be very efficient and seem scalable, like for instance, the botnets. Hence, several botnets protocols are imitated. Furthermore, protocol reverse engineering has skyrocketed because many protocols are not always well documented. In this domain, the first necessary step is to discover the message types and this work introduces a novel technique based on support vector machines and new simple message representations in order to reduce the complexity. Finally, there are many distinct applications for a single protocol which can be identified thanks to device fingerprinting techniques whose the domain of application is related to security and network management. The first technique proposed in this PhD thesis can work with the previous contribution about reverse engineering because the devices could be identified only based on the types of messages exchanged which are aggregated into a temporal behavioral tree including message delays. Besides, the syntactic tree structure of a message is also a good discriminative feature to distinguish the different devices but was very little considered until now.
Complete list of metadatas

Cited literature [206 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-01748663
Contributor : Jérôme François <>
Submitted on : Thursday, January 5, 2012 - 10:48:39 AM
Last modification on : Monday, November 30, 2020 - 10:26:03 PM
Long-term archiving on: : Tuesday, December 13, 2016 - 8:12:00 PM

Identifiers

  • HAL Id : tel-01748663, version 3

Collections

Citation

Jérôme François. Robustesse et Identification des Applications Communicantes. Réseaux et télécommunications [cs.NI]. Université Henri Poincaré - Nancy 1, 2009. Français. ⟨tel-01748663v3⟩

Share

Metrics

Record views

548

Files downloads

1213