论文信息 - Application Presence Information based Source Address Transition Detection for Edge Network Security and Management

Application Presence Information based Source Address Transition Detection for Edge Network Security and Management

Summary Source address transition technologies, such Network Address Translation and Proxy, can be used to provide unauthorized private address space. The source address of packets originated in the private address space will be changed by NAT gateway or proxy server, which is hard for service providers to manage the edge network and trace source of attacks. This paper presents the source address transition detection methods based on application presence information to enhance the edge network security.

Jianping Wu | Jun Bi

[1] Rohit Khare,et al. Upgrading to TLS Within HTTP/1.1 , 2000, RFC.

[2] Pyda Srisuresh,et al. Traditional IP Network Address Translator (Traditional NAT) , 2001, RFC.

[3] Steven M. Bellovin,et al. A technique for counting natted hosts , 2002, IMW '02.

[4] T. Kohno,et al. Remote physical device fingerprinting , 2005, 2005 IEEE Symposium on Security and Privacy (S&P'05).