A game-theoretic approach for deceiving remote operating system fingerprinting

2013 IEEE Conference on Communications and Network Security, CNS 2013

Volumn , Issue , 2013, Pages 73-81

  Rahman, Mohammad Ashiqur ^a   Manshaei, Mohammad Hossein ^a   Al Shaer, Ehab ^a  

^a University of North Carolina at Charlotte   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

NETWORK SECURITY;

DYNAMIC MECHANISM; INFORMATION GAIN; NASH EQUILIBRIUM STRATEGIES; OPERATING SYSTEM FINGERPRINTING; PERFORMANCE ANALYSIS; PERFORMANCE DEGRADATION; POTENTIAL ATTACK; PROBABILITY OF SUCCESS;

GAME THEORY;

EID: 84893599604     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CNS.2013.6682694     Document Type: Conference Paper

References (19)

1. Patrice Auffret. Sinfp, unification of active and passive operating system fingerprinting. In Journal in Computer Virology, volume 6, 2010.
2. M. Zalewski. The new p0f: 2.0.8. 2006. Available in http://lcamtuf. coredump.cx/p0f.shtml.
3. Fyodor. Remote os detection via tcp/ip fingerprinting (2nd generation). 2007. Available in http://insecure.org/nmap/osdetect/.
4. O. Arkin and F. Yarochkin. A fuzzy approach to remote active operating system fingerprinting. 2003. Available in http://www.syssecurity. com/archive/papers/Xprobe2.pdf.
5. M. Smart, G. R. Malan, and F. Jahanian. Defeating tcp/ip stack fingerprinting. In USENIX Security, Aug 2000.
6. G. Prigent, F. Vichot, and F. Harroue. Ipmorph: Fingerprinting spoofing unification. In Journal in Computer Virology, volume 6, Oct 2009.
7. Roualland and Jean-Marc Saffroy. Ip personality. 2001. Available in http://ippersonality.sourceforge.net.
8. X. Zhang and L. Zheng. Delude remote operating system (os) scan by honeyd. In Workshop on Computer Science and Engineering, Oct 2009.
9. Adrian. Osfuscate 0.3. 2008. Available in http://www.irongeek.com.
10. K. Poduri and K. Nichols. Simulation studies of increased initial tcp window size. In Internet Draft by IETF, 1998.
11. Tcp optimizer, speed guide. 2011. Available in http://www.speedguide.net/ tcpoptimizer.php.
12. R. Gibbons. Game theory for applied economics. In Princeton University Press, 1992.
13. J. Michalski. Network security mechanisms utilizing network address translation. In Journal of Critical Infrastructures, volume 2, 2006.
14. E. Al-Shaer, Q. Duan, and J. H. Jafarian. Random host mutation for moving target defense. In SECURECOMM, 2012.
15. L. Greenwald and T. Thomas. Evaluating tests used in operating system fingerprinting. In LGS Bell Labs Innovations, 2007.
16. M. Rahman, M. Manshaei, and E. Al-Shaer. A game-theoretic solution for counter-fingerprinting. Technical Report, Available at http://www.manshaei.org/ files/TR-DeceiveGame.pdf.
17. The internet traffic archive. 2008. Available in http://ita.ee.lbl.gov/ html/traces.html.
18. Basil. Windivert 1.0: Windows packet divert. 2012. Available in http://reqrypt.org/windivert.html.
19. K. Wang. Frustrating os fingerprinting with morph. 2004. Available in http://www.synacklabs.net/projects/morph/.