Open Access
ARTICLE
The Research of Address Message of an Unknown Single Protocol Data Frame
a School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China;
b Chongqing College of Electronic Engineering, Chongqing College Town, Chongqing, China
* Corresponding Author: Zheng Jie,
Intelligent Automation & Soft Computing 2018, 24(1), 139-144. https://doi.org/10.1080/10798587.2016.1267445
Abstract
Network protocols are sets of standards for certain network communications. The identification and analysis of network protocol are of significance to network management and security. There are various technologies of protocol identification, but in the process of identification protocols, in order to simplify the identification process and improve the efficiency of protocol identification, unknown mixed multi-protocol needs to be separated into single protocol so as to make further identification. This paper presents an efficient method to determine the single protocol address message based on the previous research of separating unknown mixed data frame into single protocol. By this way, the data frames of single protocol are split into point-to-point data frame according to the address; consequently, the final identification of unknown protocol can be realized. Moreover, the method was evaluated by analysis of the ARP and TCP data; this method is able to find the more than 2/3 of address information.Keywords
Cite This Article
This work is licensed under a Creative Commons Attribution 4.0 International License , which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.