èŠ‚ç‚¹æ–‡çŒ®

ç½‘ç»œåº”ç”¨è¯†åˆ«ç³»ç»Ÿçš„ç ”ç©¶ä¸Žå®žçŽ°

Research and Implementation of Network Application Identification System

åˆ†é¡µä¸‹è½½
åˆ†ç« ä¸‹è½½
æ•´æœ¬ä¸‹è½½
åœ¨çº¿é˜…è¯»
ä¸æ”¯æŒè¿…é›·ç‰ä¸‹è½½å·¥å…·ï¼Œè¯·å–æ¶ˆåŠ é€Ÿå·¥å…·åŽä¸‹è½½ã€‚

ã€ä½œè€…ã€‘ å™åšï¼›

ã€ä½œè€…åŸºæœ¬ä¿¡æ¯ã€‘ åŒ—äº¬é‚®ç”µå¤§å¦ ï¼Œ ç”µåä¸Žé€šä¿¡å·¥ç¨‹ï¼ˆä¸“ä¸šå¦ä½ï¼‰ï¼Œ 2013ï¼Œ ç¡•å£«

ã€æ‘˜è¦ã€‘ éšç€äº’è”ç½‘çš„é«˜é€Ÿå‘å±•,ç½‘ç»œåº”ç”¨å±‚å‡ºä¸ç©·,å¤šç§å¤šæ ·,ä½†æ˜¯ç”±äºŽäº’è”ç½‘çš„äº¤äº’ä¸Žå¼€æ”¾æ€§ä½¿å¾—ç½‘ç»œåº”ç”¨è‰¯èŽ ä¸é½,åˆç”±äºŽæ”¿åºœã€è¿è¥å•†ã€ä¼ä¸šç‰ç»„ç»‡çš„éœ€è¦,å¹¶è®©ç½‘ç»œç®¡ç†äººå‘˜èƒ½å¤ŸåŠæ—¶äº†è§£å¹¶ä¸”æŽ§åˆ¶ç½‘ç»œçš„è¿è¡ŒçŠ¶æ€,ä¿æŠ¤ç½‘ç»œæ£å¸¸è¿è¡Œ,ç½‘ç»œåº”ç”¨è¯†åˆ«ä»¥åŠè¯†åˆ«ç³»ç»Ÿçš„ç ”ç©¶è¿«åœ¨çœ‰ç«,æˆä¸ºä¸€ä¸ªååˆ†é‡è¦çš„è¯¾é¢˜,è¿™ä¹Ÿå¯¹ç½‘ç»œè¿è¥ã€ç®¡ç†ä»¥åŠæŽ§åˆ¶å…·æœ‰é‡è¦æ„ä¹‰ã€‚æœ¬è®ºæ–‡è‡´åŠ›äºŽç ”ç©¶ç½‘ç»œåº”ç”¨çš„è¯†åˆ«ä»¥åŠç³»ç»Ÿçš„ç ”ç©¶ä¸Žå®žçŽ°,ä¸»è¦ç ”ç©¶çš„å†…å®¹åŒ…æ‹¬ä¸‰ä¸ªéƒ¨åˆ†,å¸¸è§ç½‘ç»œåº”ç”¨ç±»åž‹ä»‹ç»å’Œç½‘ç»œåº”ç”¨è¯†åˆ«æ–¹æ³•æ€»ç»“ã€Skypeåº”ç”¨çš„åˆ†æžä»¥åŠè¯†åˆ«,ç½‘ç»œåº”ç”¨è¯†åˆ«ç³»ç»Ÿçš„ç ”ç©¶ä¸Žè®¾è®¡,åŸºäºŽé€’å½’å“ˆå¸Œçš„å¤šæ¨¡å¼åŒ¹é…ç®—æ³•çš„ç ”ç©¶ä¸Žå®žçŽ°ã€‚æœ¬æ–‡é¦–å…ˆä»‹ç»äº†äº”ç§å¸¸è§çš„ç½‘ç»œåº”ç”¨,åŒæ—¶ç»“åˆè¿™äº”ç§ç½‘ç»œåº”ç”¨çš„è¯†åˆ«ç‰¹å¾ç»™å‡ºç½‘ç»œåº”ç”¨è¯†åˆ«æŠ€æœ¯çš„å‡ ç§æ–¹æ³•,å¹¶ä»¥Skypeåº”ç”¨ä¸ºä¾‹å¯¹å…¶åŠ ä»¥åˆ†æžä¸Žè¯†åˆ«ã€‚å…¶æ¬¡æœ¬æ–‡ç€é‡ä»‹ç»äº†ç½‘ç»œåº”ç”¨è¯†åˆ«ç³»ç»Ÿ,éšç€ç½‘ç»œåº”ç”¨æ•°é‡çš„ä¸æ–å¢žåŠ ,çŽ°æœ‰ç½‘ç»œåº”ç”¨è¯†åˆ«ç³»ç»Ÿä¸çš„ç‰¹å¾è§„åˆ™æ•°é‡ä¸æ–è†¨èƒ€,è¿›å…¥ç³»ç»Ÿçš„æ•°æ®æŠ¥æ–‡éœ€è¦é¡ºåºåŒ¹é…æ¯ä¸€æ¡ç‰¹å¾è§„åˆ™,å¯¼è‡´ç³»ç»Ÿæ•ˆçŽ‡ä½Žä¸‹ã€‚åœ¨æ¤åŸºç¡€ä¸Š,æˆ‘ä»¬ç ”ç©¶å¹¶æ”¹è¿›äº†çŽ°æœ‰ç½‘ç»œåº”ç”¨è¯†åˆ«ç³»ç»Ÿ,è®¾è®¡å¹¶æå‡ºä¸€ç§è§„åˆ™åˆå§‹åŒ–çš„æ ‘å½¢åˆ†ç±»ç»“æž„çš„ç³»ç»Ÿã€‚æœ€åŽé’ˆå¯¹ç³»ç»Ÿä¸å›ºå®šä½ç½®å›ºå®šå…³é”®å—çš„è¯†åˆ«ç®—æ³•,åœ¨åŽŸæœ‰é¡ºåºåŒ¹é…çš„åŸºç¡€ä¸Š,æœ¬æ–‡åˆ›æ–°æå‡ºä¸€ä¸ªåŸºäºŽé€’å½’å“ˆå¸Œçš„å¤šæ¨¡å¼åŒ¹é…ç®—æ³•,é€šè¿‡å®žéªŒæµ‹è¯•è¯æ˜Ž,éšç€è§„åˆ™æ•°ç›®çš„å¢žåŠ æˆ–è€…è¾“å…¥æ•°æ®æŠ¥æ–‡æ•°ç›®çš„å¢žåŠ ,æ”¹è¿›åŽçš„ç®—æ³•æ‰€éœ€åŒ¹é…æ—¶é—´å¤§å¹…åº¦ç¼©çŸ,ä¸”ä¸ŽåŽŸæœ‰ç®—æ³•ç›¸æ¯”,æ€§èƒ½å¾—åˆ°æé«˜ã€‚æ›´å¤š è¿˜åŽŸ

ã€Abstractã€‘ With the rapid development of the Internet, a variety of network applications appeared in our daily life including good and bad applications, due to the needs of the government, carriers, enterprises and other organizations. In order to allow network managers to keep controlling the status of the network and protect network uptime, network application identification and recognition system become a very important issue, which also has an important significance for network management and control.This thesis aims to the research and implementation of network application identification system, the main contents of the study consists of three parts, network application identification methods based on DPI; research and implementation of network application identification system; I-HASH multiple various position pattern matching algorithm in Internet application identification.This paper first introduces five common network applications, then we introduced the identification method combined with those five network application, given the several methods of network applications identification technology. Furthermore, this article focuses on the network application identification system, with the increasing number of network applications, the number of the characteristicsâ€™ rules in the existing network application identification system is expanding, resulting in system efficiency is low. On this basis, we have studied and improved identification system of the existing network applications, design and proposed a rule tree classification structure of the system initialization. The efficiency of multiple pattern matching is important to our network application identification system, for the fixed pattern fixed keyword in the rules, on the basis of the original sequence matching, this paper proposed a recursive hash multi-pattern matching algorithm. Experiments showed that with increase of the number of rules and packets, the time of the improved algorithm increases slowly, and greatly improved performance compared to the original algorithm.æ›´å¤š è¿˜åŽŸ

ã€å…³é”®è¯ã€‘ DPIç½‘ç»œåº”ç”¨è¯†åˆ«ç³»ç»Ÿï¼› å“ˆå¸Œç®—æ³•ï¼› å¤šæ¨¡å¼åŒ¹é…ç®—æ³•ï¼›
ã€Key wordsã€‘ DPI Network Application Identification SystemHash algorithmï¼› Multi-pattern matching algorithmï¼›

ã€ç½‘ç»œå‡ºç‰ˆæŠ•ç¨¿äººã€‘ åŒ—äº¬é‚®ç”µå¤§å¦

ã€åˆ†ç±»å·ã€‘TP393.07
ã€ä¸‹è½½é¢‘æ¬¡ã€‘83
æ”»è¯»æœŸæˆæžœ

çŸ¥ç½‘èŠ‚ä¸‹è½½

èŠ‚ç‚¹æ–‡çŒ®ä¸ï¼š

æœ¬æ–‡é“¾æŽ¥çš„æ–‡çŒ®ç½‘ç»œå›¾ç¤º:

æœ¬æ–‡çš„å¼•æ–‡ç½‘ç»œ

èŠ‚ç‚¹æ–‡çŒ®