| 基于决策树的被动操作系统识别技术研究 |
| |
| 引用本文: | 易运晖,刘海峰,朱振显.基于决策树的被动操作系统识别技术研究[J].计算机科学,2016,43(8):79-83. |
| |
| 作者姓名: | 易运晖 刘海峰 朱振显 |
| |
| 作者单位: | 西安电子科技大学通信工程学院 西安710071,西安电子科技大学通信工程学院 西安710071,西安电子科技大学通信工程学院 西安710071 |
| |
| 基金项目: | 本文受国家自然科学基金资助 |
| |
| 摘 要: | 操作系统识别是网络安全评估的关键技术之一,在网络安全威胁和风险日益加剧的形势下,其研究具有非常重要的意义。针对当前基于TCP/IP协议栈指纹库的操作系统识别技术难以辨识未知指纹所对应的操作系统的问题,提出了基于C4.5决策树模型的被动操作系统识别方法,并将它与其他分类算法进行了比较。通过实验测试验证了分类方法的有效性,并对其结果进行了分析。
|
| 关 键 词: | 操作系统识别 TCP/IP协议栈 指纹 决策树 有效性 |
| 收稿时间: | 2015/7/13 0:00:00 |
| 修稿时间: | 2015/10/26 0:00:00 |
Research of Passive OS Recognition Based on Decision Tree |
| |
| YI Yun-hui,LIU Hai-feng and ZHU Zhen-xian.Research of Passive OS Recognition Based on Decision Tree[J].Computer Science,2016,43(8):79-83. |
| |
| Authors: | YI Yun-hui LIU Hai-feng and ZHU Zhen-xian |
| |
| Abstract: | As the problem of network treat is getting worse,it makes great sense to study the method of operation system recognition,which is a key part of network security evaluation.Current operation system recognition based on TCP/IP stack fingerprint database can not recognize unknown fingerprints.A passive operating system identification method based on decision tree was proposed,and it was compared with other classification algorithms.Experiment shows that this classification algorithm owns a better effectiveness and gives the explanation about the result. |
| |
| Keywords: | OS recognition TCP/IP stack Fingerprinting Decision tree Effectiveness |
|
|
点击此处可从《计算机科学》下载全文 |
