Abstract
In this paper, we propose RegEx-Filter(pre-filtering approach) and IP traceback method to trace an unauthorized access incidents in the Internet, The current control technologies cannot stop specific way of access. The basic idea is to generate the RegEx print from RegEx set and use it in prefiltering most unmatched items and trace out the unauthorized user by means of traceback method. There are two key challenges in RegEx: the generation of RegEx print and the matching process of RegEx print. The generation of RegEx is tricky as it needs to tradeoff between two conflicting goals: filtering effectiveness, which means to filter out as many unmatched items as possible, and matching speed, which means that we want RegEx print to be as high as possible. Here we describe the development and the evaluation of our prototype system. The main features of our proposed method are the RegEx-Filter which filters the unmatched items. Packet feature, which is composed of specific packet information contained in a packet for identification of an unauthorized packet. And the algorithm using datalink identifier to identify a routing of a packet. We show the development of the prototype system, RegEx-Filter equipped with tracing functions on routers and its processing result.
Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
