Revealing skype traffic: when randomness plays with you
作者: Dario Bonfiglio , Marco Mellia , Michela Meo , Dario Rossi , Paolo Tofanelli
关键词:
摘要: Skype is a very popular VoIP software which has recently attracted the attention of research community and network operators. Following closed source proprietary design, protocols algorithms are unknown. Moreover, strong encryption mechanisms adopted by Skype, making it difficult to even glimpse its presence from traffic aggregate. In this paper, we propose framework based on two complementary techniques reveal Skypetraffic in real time. The first approach, Pearson'sChi-Square test agnostic VoIP-related trafficcharacteristics, used detect Skype's fingerprint packet framing structure, exploiting randomness introduced at bit level process. Conversely, second approach stochastic characterization terms arrival rate length, as features decision process Naive Bayesian Classifiers.In order assess effectiveness above techniques, develop an off-line cross-checking heuristic deep-packet inspection flow correlation, interesting per se. This allows us quantify amount false negatives positives gathered means proposed approaches: results obtained measurements different networks show that technique effective identifying traffic. While both classifier commonly used, idea leveraging novel. We adopt identify traffic, but same methodology can be applied other classification problems well.
acm.org
sigcomm.org 参考文章(11)
F. Desclaux, P. Biondi, Silver Needle in the Skype ,(2006)
Saikat Guha, Neil Daswani, Ravi Jain, An Experimental Study of the Skype Peer-to-Peer VoIP System international workshop on peer-to-peer systems. pp. 1- 6 ,(2005)
E. Rescorla, HTTP Over TLS RFC. ,vol. 2818, pp. 1- 7 ,(2000)
Andrew W. Moore, Denis Zuev, Internet traffic classification using bayesian analysis techniques measurement and modeling of computer systems. ,vol. 33, pp. 50- 60 ,(2005) , 10.1145/1064212.1064220
R. Lo Cigno, M. Mellia, F. Neri, Measuring IP and TCP behavior on edge nodes with Tstat Computer Networks. ,vol. 47, pp. 1- 21 ,(2005) , 10.1016/J.COMNET.2004.06.026
V. Jacobson, R. Frederick, H. Schulzrinne, S. Casner, RTP: A Transport Protocol for Real-Time Applications RFC 1889. ,vol. 1889, pp. 1- 104 ,(2003)
S. A. Baset, H. G. Schulzrinne, An Analysis of the Skype Peer-to-Peer Internet Telephony Protocol ieee international conference computer and communications. pp. 1- 11 ,(2006) , 10.1109/INFOCOM.2006.312
Kuan-Ta Chen, Chun-Ying Huang, Polly Huang, Chin-Laung Lei, Quantifying Skype user satisfaction acm special interest group on data communication. ,vol. 36, pp. 399- 410 ,(2006) , 10.1145/1151659.1159959
Mark Carson, Darrin Santay, NIST Net ACM SIGCOMM Computer Communication Review. ,vol. 33, pp. 111- 126 ,(2003) , 10.1145/956993.957007
Chris Lonvick, Sami Lehtinen, The Secure Shell (SSH) Protocol Assigned Numbers RFC. ,vol. 4250, pp. 1- 20 ,(2006)