Other formats:
BibTeX
LaTeX
RIS
@inproceedings{866432, author = {Krmíček, Vojtěch and Vykopal, Jan and Krejčí, Radek}, address = {New York, NY, USA}, booktitle = {Co-Next Student Workshop '09: Proceedings of the 5th international student workshop on Emerging networking experiments and technologies}, keywords = {Netflow; NAT detection; network security}, language = {eng}, location = {New York, NY, USA}, isbn = {978-1-60558-751-6}, pages = {23-24}, publisher = {ACM}, title = {Netflow Based System for NAT Detection}, year = {2009} }
TY - JOUR ID - 866432 AU - Krmíček, Vojtěch - Vykopal, Jan - Krejčí, Radek PY - 2009 TI - Netflow Based System for NAT Detection PB - ACM CY - New York, NY, USA SN - 9781605587516 KW - Netflow KW - NAT detection KW - network security N2 - Revealing the misuse of network resources is one of the im- portant fields in the network security, especially for the network administrators. One of them is the use of unauthorized NAT (Network Address Translation) devices (e.g. small office routers or wireless access points) inside the network which introduces serious security issues. There are several techniques proposed on how to detect NAT devices in the computer networks, but all these methods suffer from high false positive rate. Also there is no study how to perform NAT detection using NetFlow data, often used for monitoring and forensics analysis in large networks. The contribution of our work consists of the following: i) we have transformed existing NAT detection techniques to work with NetFlow data, ii) we propose three new NAT detection approaches, iii) we have designed a prototype of NAT detection system, which aggregates the results from various NAT detection techniques in order to minimize false positive and false negative rates. ER -
KRMÍČEK, Vojtěch, Jan VYKOPAL and Radek KREJČÍ. Netflow Based System for NAT Detection. In \textit{Co-Next Student Workshop '09: Proceedings of the 5th international student workshop on Emerging networking experiments and technologies}. New York, NY, USA: ACM, 2009, p.~23-24. ISBN~978-1-60558-751-6.
|