A hybrid approach to operating system discovery based on diagnosis theory

Author

Gagnon, François ; Esfandiari, Babak

Author_Institution

Sch. of Comput. Sci., Carleton Univ., Ottawa, ON, Canada

fYear

2012

fDate

16-20 April 2012

Firstpage

860

Lastpage

865

Abstract

Motivated by the increasing importance of knowing which operating systems are running in a given network, we evaluated operating system discovery (OSD) tools. The results indicated a serious lack of accuracy in current OSD tools. This thesis proposes a new approach to OS discovery which addresses the limitations of existing tools and leads to a more flexible, less intrusive, and much more accurate tool. Moreover, unlike existing OSD tools which are completely ad hoc, our approach is formal and follows the principles of diagnosis problem solving. This formalism allows us to: (a) characterize the complexity of OSD; (b) use well-tested algorithms and (c) benefit from numerous possible extensions. To fully address the needs of OSD, we generalize the theory of diagnosis with a query-based extension. This extension leads to a spectrum of test selection algorithms to solve each query.

Keywords

operating systems (computers); problem solving; program diagnostics; program testing; query processing; OSD complexity; diagnosis problem solving principles; diagnosis theory; operating system discovery tools; query-based extension; test selection algorithms; Accuracy; Computers; Context; Engines; Knowledge based systems; Operating systems; Security;

fLanguage

English

Publisher

ieee

Conference_Titel

Network Operations and Management Symposium (NOMS), 2012 IEEE

Conference_Location

Maui, HI

ISSN

1542-1201

Print_ISBN

978-1-4673-0267-8

Electronic_ISBN

1542-1201

Type

conf

DOI

10.1109/NOMS.2012.6212000

Filename

6212000