kau.se
System disruptions
We are currently experiencing disruptions on the search portals due to high traffic. We are working to resolve the issue, you may temporarily encounter an error message.
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • apa.csl
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Detecting TCP Flows Inside EcryptedVPN Tunnels
Karlstad University, Faculty of Health, Science and Technology (starting 2013), Department of Mathematics and Computer Science (from 2013).
2019 (English)Independent thesis Advanced level (degree of Master (Two Years)), 300 HE creditsStudent thesis
Abstract [en]

Encrypted tunnels have made analyzing Internet traffic harder, when a virtual private network is used the flows become intertwined and thus lose their unique characteristics. These characteristics which are analyzed by network middleboxes for, among other things security and quality-of-service purposes. Using a real-world dataset, this project investigates if packet size and inter-arrival time for the three-way handshake packets can be used to detect the beginning of TCP flows inside encrypted tunnels. Three classification methods were tested, the first using packet size values for detection, the second used correlation data between packet sizes for each three-way handshake packet and the last method used correlation data between packet sizes and inter-arrival times for each three-way handshake packet. The best results were obtained when with the first and last of these methods, with a specific set of parameters.
Place, publisher, year, edition, pages
2019. , p. 99
Keywords [en]
Encrypted Tunnels, Flow start, TCP, VPN, Flow separation
National Category
Computer Sciences
Identifiers
URN: urn:nbn:se:kau:diva-71415OAI: oai:DiVA.org:kau-71415DiVA, id: diva2:1293112
External cooperation
Sandvine Sweden AB
Educational program
Engineering: Computer Engineering (300 ECTS credits)
Presentation
2019-01-18, 10:00 (English)
Supervisors
Examiners
Projects
HITS, 4707Available from: 2019-03-12 Created: 2019-03-03 Last updated: 2019-11-12Bibliographically approved

Open Access in DiVA

bilaga(1110 kB)262 downloads
File information
File name ATTACHMENT01.pdfFile size 1110 kBChecksum SHA-512
20de32585e65c0872dbd24e45a28d389d1726789c7360a8625c947d45c7cc26b11a0893ac19e227ceccf23fcdc73c1616936593467f4d45f75fda8178e0beb94
Type attachmentMimetype application/pdf

By organisation
Department of Mathematics and Computer Science (from 2013)
Computer Sciences

Search outside of DiVA

GoogleGoogle Scholar
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 503 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • apa.csl
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.45.0
|
WCAG
|
Karlstad University
|
University Library
|
Researchers support