Abstract

In this paper, we propose RegEx-Filter(pre-filtering approach) and IP traceback method to trace an unauthorized access incidents in the Internet, The current control technologies cannot stop specific way of access. The basic idea is to generate the RegEx print from RegEx set and use it in prefiltering most unmatched items and trace out the unauthorized user by means of traceback method. There are two key challenges in RegEx: the generation of RegEx print and the matching process of RegEx print. The generation of RegEx is tricky as it needs to tradeoff between two conflicting goals: filtering effectiveness, which means to filter out as many unmatched items as possible, and matching speed, which means that we want RegEx print to be as high as possible. Here we describe the development and the evaluation of our prototype system. The main features of our proposed method are the RegEx-Filter which filters the unmatched items. Packet feature, which is composed of specific packet information contained in a packet for identification of an unauthorized packet. And the algorithm using datalink identifier to identify a routing of a packet. We show the development of the prototype system, RegEx-Filter equipped with tracing functions on routers and its processing result.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.