Towards identification of operating systems from the internet traffic: IPFIX monitoring with fingerprinting and clustering

@article{Matousek2014TowardsIO,
  title={Towards identification of operating systems from the internet traffic: IPFIX monitoring with fingerprinting and clustering},
  author={Petr Matousek and Ondrej Rysav{\'y} and Matej Gr{\'e}gr and Martin Vyml{\'a}til},
  journal={2014 5th International Conference on Data Communication Networking (DCNET)},
  year={2014},
  pages={1-7}
}
This paper deals with identification of operating systems (OSs) from the Internet traffic. Every packet injected on the network carries a specific information in its packet header that reflects the initial settings of a host's operating system. The set of such features forms a fingerprint. The OS fingerprint usually includes an initial TTL time, a TCP initial window time, a set of specific TCP options, and other values obtained from IP and TCP headers. Identification of OSs can be useful for… CONTINUE READING

Citations

Publications citing this paper.
Showing 1-5 of 5 extracted citations

Passive os fingerprinting methods in the jungle of wireless networks

NOMS 2018 - 2018 IEEE/IFIP Network Operations and Management Symposium • 2018
View 3 Excerpts
Highly Influenced

Machine Learning Fingerprinting Methods in Cyber Security Domain: Which one to Use?

2018 14th International Wireless Communications & Mobile Computing Conference (IWCMC) • 2018
View 1 Excerpt

Analyzing HTTPS encrypted traffic to identify user's operating system, browser and application

2017 14th IEEE Annual Consumer Communications & Networking Conference (CCNC) • 2017
View 2 Excerpts

Moving OS fingerprint adaptively in SDN network

2017 3rd IEEE International Conference on Computer and Communications (ICCC) • 2017
View 1 Excerpt

References

Publications referenced by this paper.
Showing 1-10 of 15 references

OS and Application Fingerprinting Techniques

J. M. Allen
Infosec reading room, SANS Institute • 2007
View 3 Excerpts
Highly Influenced

Cisco Systems NetFlow Services Export Version 9

RFC • 2004
View 3 Excerpts
Highly Influenced

Processing of a Flexible Network Traffic Flow Information

P. Velan
Msc. thesis, • 2012
View 1 Excerpt

OS fingerprinting with IPv 6

A. K. Jain
2011

OS fingerprinting with IPv6. Infosec

C. Eckstein
2011
View 1 Excerpt

Similar Papers

Loading similar papers…