YAMA : a system for marking network traffic
Thesis (M. Eng.)--Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer Science, 2006.
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Thesis |
| Language: | eng |
| Published: |
Massachusetts Institute of Technology
2008
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/1721.1/41607 |
| _version_ | 1811090292992901120 |
|---|---|
| author | Hernández González, Néstor Felipe |
| author2 | Robert K. Cunningham. |
| author_facet | Robert K. Cunningham. Hernández González, Néstor Felipe |
| author_sort | Hernández González, Néstor Felipe |
| collection | MIT |
| description | Thesis (M. Eng.)--Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer Science, 2006. |
| first_indexed | 2024-09-23T14:41:24Z |
| format | Thesis |
| id | mit-1721.1/41607 |
| institution | Massachusetts Institute of Technology |
| language | eng |
| last_indexed | 2024-09-23T14:41:24Z |
| publishDate | 2008 |
| publisher | Massachusetts Institute of Technology |
| record_format | dspace |
| spelling | mit-1721.1/416072019-04-10T18:27:59Z YAMA : a system for marking network traffic System for marking network traffic Hernández González, Néstor Felipe Robert K. Cunningham. Massachusetts Institute of Technology. Dept. of Electrical Engineering and Computer Science. Massachusetts Institute of Technology. Dept. of Electrical Engineering and Computer Science. Electrical Engineering and Computer Science. Thesis (M. Eng.)--Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer Science, 2006. Includes bibliographical references (p. 105-108). Computer security performance analysis requires precise labeling of traffic as either background or attack traffic. When an experiment is performed on-line, it may also be important to identify traffic from the security system. Today this is tedious and difficult, requiring personnel with a deep understanding of multiple protocols. YAMA (Your Able Marking Aide) is a tool that labels sessions and packets associated with a set of user actions given those actions, the traffic, and a network configuration (host information and web page corpus). An evaluation of a version that processes web traffic is performed using data from Alexas Top 100 Sites. YAMA 1.0 correctly associates the action of visiting a specific site with 90% of all HTTP packets, and 99% of both HTTP GET and DNS packets. Furthermore, YAMA 1.0 produces zero false positives when given a high-level event indicating a user visited one web site and packets from a different site. by Néstor Felipe Hernández González. M.Eng. 2008-05-19T16:00:05Z 2008-05-19T16:00:05Z 2006 2006 Thesis http://hdl.handle.net/1721.1/41607 214350628 eng M.I.T. theses are protected by copyright. They may be viewed from this source for any purpose, but reproduction or distribution in any format is prohibited without written permission. See provided URL for inquiries about permission. http://dspace.mit.edu/handle/1721.1/7582 108 p. application/pdf Massachusetts Institute of Technology |
| spellingShingle | Electrical Engineering and Computer Science. Hernández González, Néstor Felipe YAMA : a system for marking network traffic |
| title | YAMA : a system for marking network traffic |
| title_full | YAMA : a system for marking network traffic |
| title_fullStr | YAMA : a system for marking network traffic |
| title_full_unstemmed | YAMA : a system for marking network traffic |
| title_short | YAMA : a system for marking network traffic |
| title_sort | yama a system for marking network traffic |
| topic | Electrical Engineering and Computer Science. |
| url | http://hdl.handle.net/1721.1/41607 |
| work_keys_str_mv | AT hernandezgonzaleznestorfelipe yamaasystemformarkingnetworktraffic AT hernandezgonzaleznestorfelipe systemformarkingnetworktraffic |