A hybrid approach to operating system discovery based on diagnosis theory
作者: F. Gagnon , B. Esfandiari
DOI: 10.1109/NOMS.2012.6212000
关键词: Hybrid approach 、 Formalism (philosophy of mathematics) 、 Operating system 、 Distributed computing 、 Knowledge-based systems 、 Computer science 、 Diagnosis problem 、 Program testing 、 Test selection
摘要: Motivated by the increasing importance of knowing which operating systems are running in a given network, we evaluated system discovery (OSD) tools. The results indicated serious lack accuracy current OSD This thesis proposes new approach to OS addresses limitations existing tools and leads more flexible, less intrusive, much accurate tool. Moreover, unlike completely ad hoc, our is formal follows principles diagnosis problem solving. formalism allows us to: • characterize complexity OSD; use well-tested algorithms benefit from numerous possible extensions. To fully address needs OSD, generalize theory with query-based extension. extension spectrum test selection solve each query.
sci-hub.se 参考文章(74)
Amit Singhal, Modern Information Retrieval : A Brief Overview IEEE Data(base) Engineering Bulletin. ,vol. 24, pp. 35- 43 ,(2001)
Farnam Jahanian, G. Robert Malan, Matthew Smart, Defeating TCP/IP stack fingerprinting usenix security symposium. pp. 17- 17 ,(2000)
Patrick Goldsack, Antonio Lain, Guillaume Mecheneau, Peter Toft, Paul Murray, Julio Guijarro, SmartFrog: Configuration and Automatic Ignition of Distributed Applications ,(2003)
David Poole, Representing Knowledge for Logic-Based Diagnosis. Future Generation Computer Systems. pp. 1282- 1290 ,(1988)
Frederic Massicotte, Mathieu Couture, Using a VMware Network Infrastructure to Collect Traffic Traces for Intrusion Detection Evaluation ,(2005)
Sylvie Thiébaux, Alessandro Cimatti, Piergiorgio Bertoli, John Slaney, Solving power supply restoration problems with planning via symbolic model checking european conference on artificial intelligence. pp. 576- 580 ,(2002)
Greg Taleck, Ambiguity Resolution via Passive OS Fingerprinting recent advances in intrusion detection. pp. 192- 206 ,(2003) , 10.1007/978-3-540-45248-5_11
Annie De Montigny-Leboeuf, Frederic Massicotte, Passive Network Discovery for Real Time Situation Awareness ,(2004)
Anthony T Mann, The Rational Guide To: Microsoft Virtual PC 2004 ,(2004)
Gerhard Friedrich, Wolfgang Nejdl, Choosing Observations and Actions in Model-Based Diagnosis/Repair Systems. principles of knowledge representation and reasoning. pp. 489- 498 ,(1992)