Skip to main content
SpringerLink
Log in

Design of Hybrid Network Discovery Module for Detecting Client Applications and ActiveX Controls

  • Conference paper
Computational Science and Its Applications – ICCSA 2007 (ICCSA 2007)

Part of the book series: Lecture Notes in Computer Science ((LNTCS,volume 4706))

Included in the following conference series:

Abstract

In this paper, the design of hybrid network discovery module is introduced. As hybrid approach, active and passive network discovery techniques are used. Passive network discovery module, especially, is designed to detect desktop applications and ActiveX controls installed on client computers as well as operating system and services on servers. This module can help security administrators identify organization’s IT asset and proactively handle vulnerability information.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 129.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 169.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. De Montigny-Leboeuf, A., et al.: Passive Network Discovery for Real Time Situation Awareness. In: Proceedings of the RTO IST Symposium on Adaptive Defence in Unclassified Networks (2004)

    Google Scholar 

  2. http://insecure.org/nmap/

  3. http://ettercap.sourceforge.net

  4. Webster, S., et al.: Experience Using Active and Passive Mapping for Network Situational Awareness. In: The Fifth IEEE International Symposium on Network Computing and Applications, IEEE Computer Society Press, Los Alamitos (2006)

    Google Scholar 

  5. http://www.openview.hp.com/

  6. Thomas, Y., et al.: Improving Security Management through Passive Network Observation. In: The First International Conference on Availability, Reliability and Security (2006)

    Google Scholar 

  7. http://www.ntop.org/

  8. http://lcamtuf.coredump.cx/p0f.shtml

  9. http://www.tenablesecurity.com/products/pvs.shtml

  10. http://www.sourcefire.com/products/rna.html

  11. http://www.gomor.org/

  12. http://www.nlayers.com/products/insight/

  13. Lippmann, R., et al.: Passive Operating System Identification From TCP/IP Packet Headers. MIT Lincoln Laboratory (2004)

    Google Scholar 

  14. 2007 Information Security White Paper(Written in Japanese), Information-technology Promotion Agency, Japan (2007)

    Google Scholar 

  15. Symantec Internet Security Threat Report - Trends for July?December 06, Symantec (March 2007)

    Google Scholar 

  16. http://en.wikipedia.org/wiki/ActiveX_control

  17. http://support.microsoft.com/kb/883256

  18. http://www.haansoft.com/

  19. http://gom.ipop.co.kr/

  20. http://www.altools.co.kr/

  21. http://nateon.nate.com/

  22. Arkin, O.: A New Hybrid Approach For Infrastructure Discovery, Monitoring and Control, Black Hat USA 2005 (2005)

    Google Scholar 

  23. Stevens, W.R.: TCP/IP Illustrated, vol. 1. Addison-Wesley, Reading (1994)

    MATH  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Korea Information Security Agency, Seoul, Korea

    Kyounghee Ko, Pilyong Kang & Wontae Sim

Authors
  1. Kyounghee Ko
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Pilyong Kang
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Wontae Sim
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Osvaldo Gervasi Marina L. Gavrilova

Rights and permissions

Reprints and permissions

Copyright information

© 2007 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Ko, K., Kang, P., Sim, W. (2007). Design of Hybrid Network Discovery Module for Detecting Client Applications and ActiveX Controls. In: Gervasi, O., Gavrilova, M.L. (eds) Computational Science and Its Applications – ICCSA 2007. ICCSA 2007. Lecture Notes in Computer Science, vol 4706. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-74477-1_91

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-74477-1_91

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-74475-7

  • Online ISBN: 978-3-540-74477-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation