Show simple item record

dc.contributor.authorEl Shakankiry, Ali
dc.contributor.otherQueen's University (Kingston, Ont.). Theses (Queen's University (Kingston, Ont.))en
dc.date.accessioned2017-08-23T18:45:59Z
dc.date.available2017-08-23T18:45:59Z
dc.identifier.urihttp://hdl.handle.net/1974/22040
dc.description.abstractNetwork protocol parsers constantly dissect a large number of network data to place into internal data structures for further processing by traffic analysis systems. Many network protocol parsers are hand-written for performance reasons, and lack the security required to run on mission-critical networks. We propose an approach that automatically generates custom protocol parsers to process network traffic to be used as part of an Intrusion Detection System. The user is provided a specification language in which they can define the protocols they need to analyse. This thesis looks at command and control/industrial control networks that are characterized by a limited number of known protocols. We present a robust, secure, and high-performing solution that deals with the issues that have only partially been addressed in this domain.en_US
dc.language.isoenen_US
dc.relation.ispartofseriesCanadian thesesen
dc.rightsQueen's University's Thesis/Dissertation Non-Exclusive License for Deposit to QSpace and Library and Archives Canadaen
dc.rightsProQuest PhD and Master's Theses International Dissemination Agreementen
dc.rightsIntellectual Property Guidelines at Queen's Universityen
dc.rightsCopying and Preserving Your Thesisen
dc.rightsThis publication is made available by the authority of the copyright owner solely for the purpose of private study and research and may not be copied or reproduced except as permitted by the copyright laws without written authority from the copyright owner.en
dc.subjectBinaryen_US
dc.subjectNetwork Protocol Parseren_US
dc.subjectParseren_US
dc.subjectContext Sensitiveen_US
dc.subjectComputeren_US
dc.subjectSecurityen_US
dc.subjectPacketen_US
dc.subjectPacket Verificationen_US
dc.subjectTraffic Analysisen_US
dc.subjectProtocol Parsingen_US
dc.subjectNetworkingen_US
dc.subjectNetwork Securityen_US
dc.titleContext Sensitive and Secure Parser Generation for Deep Packet Inspection of Binary Protocolsen_US
dc.typeThesisen
dc.description.degreeMaster of Scienceen_US
dc.contributor.supervisorDean, Thomas
dc.contributor.departmentComputingen_US


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record