Title :
Cluster system for binary data frame
Author :
Yang Yue ; Yuan Liu ; Chunrui Zhang ; Fanzhi Meng
Author_Institution :
Inst. of Comput. Applic., China Acad. of Eng. Phys., Mianyang, China
Abstract :
Protocol reverse engineering is very important for information security. In the complex wireless network environment, in order to separate binary data frames for subsequent reverse protocol analysis, this paper proposes a frame cluster system designed for binary frames using complex protocol stacks. It first uses AC algorithm to get the frequent characteristics of the binary frames, then creatively uses the Apriori algorithm to explore the relationship between these characteristics and the 4-step pruning process to choose the most important characteristics, and finally uses the selected characteristics and their relationships, through the Kmeans algorithm to cluster the frames. Experiments show that the result is good, and if the protocol type field exist, it is possible to distinguish the layered relationships between different clusters.
Keywords :
cryptographic protocols; radio networks; reverse engineering; telecommunication security; 4-step pruning process; AC algorithm; Apriori algorithm; binary data frame; complex protocol stacks; complex wireless network environment; frame cluster system; information security; k-means algorithm; protocol reverse engineering; AC algorithm; Apriori algorithm; Kmeans algorithm; protocol frame cluster; protocol reverse engineering;
Conference_Titel :
Information and Network Security, ICINS 2014 - 2014 International Conference on
Print_ISBN :
978-1-84919-909-4
DOI :
10.1049/cp.2014.1259
