• Title/Summary/Keyword: Packet analyzer

Search Result 35, Processing Time 0.03 seconds

A Study of Forensic on Eavesdropping from VoIP and Messenger through WiBro Network (WiBro 네트워크에서 메신저, VoIP 도청 및 포렌식 연구)

  • Chun, Woo-Sung;Park, Dea-Woo
    • Journal of the Korea Society of Computer and Information
    • /
    • v.14 no.5
    • /
    • pp.149-156
    • /
    • 2009
  • Korean WiBro becomes international standard to IEEE 802.16e, and We are carrying out a WiBro network business from capital regions. We executed eavesdropping about voices and messenger program and the VoIP which frequently happened in WiBro networks at these papers. We have a lot in common with the Wireshark which is a packet collection and an analyzer, and We execute eavesdropping, and We reproduce eavesdropping data with bases to a SIP, H.263, TCP, UDP protocol through packets. In time of a copy of a packet negative the VoIP which verify time with bases, and was eavesdropped on integrity packet and a X-Lite call record, be matched that a packet is counterfeit forgery did not work, and We demonstrate, and verify integrity. The data which integrity was verified put in a seaming envelope, and we prepare so as it is to a liver of investigator, and execute, and to be able to do use to proof data after seaming in courts in order to utilize as criminal investigation data.

A Development of APDU Packet Analyzer Based oil Smart Card (스마트 카드를 위한 APDU 패킷 분석기 개발)

  • 박진호;조증보;정민수
    • Proceedings of the Korea Multimedia Society Conference
    • /
    • 2004.05a
    • /
    • pp.350-353
    • /
    • 2004
  • 스마트 카드를 사용함에 있어서 APDU 통신은 필수적이다. 이런 APDU 를 통해 패킷을 주고 받을 경우에 그 패킷의 이진코드를 분석해 자바 가상 기계에 어떻게 할당되는지 시각적으로 보여줌으로써 그 이진코드 하나 하나가 어떤 의미를 내포하고 있는지 보다 명확하고 쉬운 이해가 가능 하도록 하며, 복잡한 절차의 카드와 카드리더기 사이의 APDU 통신을 버튼 하나로 해결해준다.

  • PDF

An Implementation of Digital TV Stream Analyzer (디지털 TV 스트림 분석기 구현)

  • 정혜진;김용한
    • Journal of Broadcast Engineering
    • /
    • v.6 no.1
    • /
    • pp.82-97
    • /
    • 2001
  • In this paper, we describe a software implementation of a digital TV stream analyzer that can be used for analyzing and verifying digital TV bitstreams on personal computes. It accepts as input MPEG-2 transport streams (TS's) already stored on hard disks and doesn't require any special hardware. After classifying TS packets into program specific information(PSI) TS section auido, video, program clock reference (PCR) private data and null packets, it displays their contents through a graphic user interface along with the syntax elements of the TS header. Also it displays the decoded I frame nearest in time axis the TS packet currently shown This feature helps pin pointing the specific location of problematic parts in bitstreams. The bitsteam analyzer provides the compliance test of MPEG-2 Systems standard and the data injection functionality with which one can easily insert additional data to existing MPEG-2 bitstreams. Using the resulting system one can produce at low test streams for interactive broadcasting and data broadcasting for laboratory use.

  • PDF

Porting Point-to-Point Protocol(PPP) Software to an Embedded System (임베디드 시스템으로의 Point-to-Point Protocol(PPP) 소프트웨어 이식)

  • Choe, Seong-Jong
    • The Transactions of the Korea Information Processing Society
    • /
    • v.7 no.7
    • /
    • pp.2135-2148
    • /
    • 2000
  • Developing network software in embedded systems, such as digital set-top boxes, requires coding under limited computing resources. This paper presents the porting of Point-to-point Protocol (PPP) software, PPPD, to an embedded system. The PPP is the most popular link layer protocol for the information appliance, to an embedded system. In order to achieve this, problems to be solved for the porting were identified and methods to solve the problems were described. First, PPP source codes were divided into modules. Next, functions of each module were analyzed and interfaces between the modules were delineated. With the analysis results, porting to the embedded system was described. The normal operation of the ported software was verified with the help of a network packet analyzer. Finally, experiences during the porting were presented. The method developed in th paper can be applied to the porting of software to an embedded system as well as the porting of network software.

  • PDF

A Security Packet Analyzer in IPv4/IPv6 network (IPv4/IPv6 보안 패킷 분석기)

  • Kwon, Hyeok-Chan;Nah, Jae-Hoon;Sohn, Sung-Won
    • Annual Conference of KIPS
    • /
    • 2003.05b
    • /
    • pp.1353-1356
    • /
    • 2003
  • 본 논문에서는 EP 보안(IPsec : IP Security)이 적용된 보안 패킷들을 네트워크 상에서 실시간으로 수집하여 분석해 주는 IP 보안 패킷 분석기를 설계 및 구현하였다. 본 패킷 분석기는 TCP UDP IP, ICMP 등의 일반 네트워크 패킷과 키 교환을 위한 IKE 패킷, 보안 통신을 위한 AM, ESP 패킷 등을 실시간으로 수집하고 분석하는 기능을 갖는다. 본 패킷 분석기는 현재의 IPv4 패킷 뿐 아니라 차세대 인터넷인 IPv6 패킷에 대하여도 실시간 수집 및 분석 기능을 제공한다. 또한 본 분석기는 IPsec 엔진에 대한 보안성을 평가하기 위한 자동화된 평가기능도 제공해 준다. 개발한 패킷 분석기를 이용하여 ETRI에서 개발한 통합 IPsec 엔진에 대한 보안성을 평가한 결과도 함께 보인다.

  • PDF

The Architecture of Mobile IPv6(I) - Home Agent (Mobile IPv6의 설계(I) - Home Agent)

  • 한규호;최재원;채동현;이지영;마영식;안순신
    • Proceedings of the Korean Information Science Society Conference
    • /
    • 2001.04a
    • /
    • pp.544-546
    • /
    • 2001
  • 인터넷의 확산과 All-IP망으로의 망의 진화에 대한 논의가 활발하게 이루어지고 있다. 더불어 IPv6[1]망에서의 이동성 지원을 위하여 IETF(Internet Engineering Task Force)에서 Mobile IPv6[5]를 제안했다. Mobile IPv6의 기본 발상은 Routing Table의 조작에 의해 다른 링크로 이동한 호스트에게 Packet를 전달 할 수 있게 하는 것이다.(Triangle Routing[4]. 본 논문에서는 Mobile IPv6을 구성하는 요소 중 Home Agent의 기본 구조를 제시했다. Home Agent는 크게 새로운 Message를 인식하고 만들어 보내는 Analyzer와 Sender 그리고 Logic이 들어 있는 Handler, 실제적인 Routing Table를 조작하는 System Manager로 구성된다.

A Design and Implementation of Visual Packet Analyzer over IMS (IMS 기반의 비주얼 패킷분석기의 설계 및 구현)

  • Hyun-Kook Jeong;In-Hwan Jung
    • Annual Conference of KIPS
    • /
    • 2008.11a
    • /
    • pp.1262-1264
    • /
    • 2008
  • 기존의 유/무선 전화, 인터넷, TV 등을 통합하여 다양한 멀티미디어 서비스를 지원하기 위한 차세대 통신망으로 3GPP (3rd Generation Partnership Project)에서 최초 3세대 이동 통신망으로 제안되었던 IMS(IP Multimedia Subsystem) 가 표준으로 자리 잡아가고 있으며, 전 세계 통신 회사들이 IMS를 기반으로 차세대 통신망을 구축하고 있다. 이러한 IMS 망을 이해, 분석하기 위해서는 IMS 망에서 이용되는 SIP(Session Initiation Protocol)에 대한 이해와 SIP 패킷을 분석할 수 있는 패킷 분석기가 필요하다. SIP는 VoIP환경에서 호 설정을 위해 개발된 텍스트 기반의 프로토콜로써 포맷의 간결성과 확장성으로 인하여 차세대 통신망인 IMS의 주요 프로토콜로 채택되었으며, IMS 망 환경에 맞게 확장 되었다. 본 논문에서는 SIP 패킷 분석기를 IMS 기반으로 패킷 분석 결과를 비주얼한 화면으로 보여줄 수 있도록 설계, 구현하여 사용자가 SIP 패킷 분석을 통하여 IMS 망을 이해, 분석하는데 도움을 주고자 한다.

Study on Implementation of an MPLS Switch Supporting Diffserv with VOQ-PHB (Diffserv 지원 VOQ-PHB방식의 MPLS 스위치의 구현에 관한 연구)

  • 이태원;김영철
    • Journal of the Institute of Electronics Engineers of Korea SD
    • /
    • v.41 no.5
    • /
    • pp.133-142
    • /
    • 2004
  • Recently, the growth of Internet and a variety of multimedia services through Internet increasingly demands high-speed packet transmission, the new routing function, and QoS guarantee on conventional routers. Thus, a new switching mechanical called the MPLS(Multi-Protocol Label Switching), was proposed by IETF(Internet Engineering Task Force) as a solution to meet these demands. In addition the deployment of MPLS network supporting Differentiated Services is required. In this paper, we propose the architecture of the MPLS switch supporting Differentiated Services in the MPLS-based network. The traffic conditioner consists of a classifier, a meter, and a marker. The VOQ-PHB module, which combines input Queue with each PHB queue, is implemented to utilize the resources efficiently. It employs the Priority-iSLIP scheduling algorithm to support high-speed switching. We have designed and verified the new and fast hardware architecture of VOQ-PHB and the traffic conditioner for QoS and high-speed switching using NS-2 simulator. In addition, the proposed architecture is modeled in VHDL, synthesized and verified by the VSS analyzer from SYNOPSYS. Finally, to justify the validity of the hardware architecture, the proposed architecture is placed and routed using Apollo tool.

A Policy-based Secure Framework for Constructing Secure Networking (안전한 네트워크 구성을 위한 정책기반 보안 프레임워크)

  • 박상길;장종수;손승원;노봉남
    • The Journal of Korean Institute of Communications and Information Sciences
    • /
    • v.27 no.8C
    • /
    • pp.748-757
    • /
    • 2002
  • Cyber-terror trials are increased in nowadays and these attacks are commonly using security vulnerability and information gathering method by variable services grew by the continuous development of Internet Technology. IDS's application environment is affected by this increasing Cyber Terror. General Network based IDS detects intrusion by signature based Intrusion Detection module about inflowing packet through network devices. Up to now security in network is commonly secure host, an regional issue adopted in special security system but these system is vulnerable intrusion about the attack in globally connected Internet systems. Security mechanism should be produced to expand the security in whole networks. In this paper, we analyzer the DARPA's program and study Infusion Detection related Technology. We design policy security framework for policy enforcing in whole network and look at the modules's function. Enforcement of security policy is acted by Intrusion Detection system on gateway system which is located in network packet's inflow point. Additional security policy is operated on-line. We can design and execute central security policy in managed domain in this method.

Prolonging Lifetime of the LEACH Based Wireless Sensor Network Using Energy Efficient Data Collection (에너지 효율적인 데이터 수집을 이용한 LEACH 기반 무전 센서 네트워크의 수명 연장)

  • Park, Ji-Won;Moh, Sang-Man;Chung, Il-Yong;Bae, Yong-Geun
    • Journal of the Institute of Electronics Engineers of Korea CI
    • /
    • v.45 no.3
    • /
    • pp.175-183
    • /
    • 2008
  • In wireless sensor networks with ad hoc networking capability, sensor nodes are battery operated and are usually disposable once deployed. As a result, each sensor node senses and communicates with limited energy and, thus, energy efficiency has been studied as a key design factor which determines lifetime of a wireless sensor network, and it is more improved recently by using so-called cross-layer optimization technique. In this paper, we propose and implement a new energy saving mechanism that reduces energy consumption during data collection by controlling transmission power at sensor nodes and then measure its performance in terms of lifetime improvement for the wireless sensor network platform ZigbeX. When every sensor node transmits sensed data to its clusterhead, it controls its transmission power down to as low level as communication is possible, resulting in energy saving. Each sensor node controls its transmission power based on RSSI(Received Signal Strength Indicator) of the packet received from its clusterhead. In other words, the sensor node can save energy by controlling its transmission power down to an appropriate level that its clusterhead safely receives the packet it transmits. According to the repetitive experiment of the proposed scheme on the ZigbeX platform using the packet analyzer developed by us, it is observed that the network lifetime is prolonged by up to 21.9% by saying energy during the data collection occupying most amount of network traffic.