Full Text Available

Access Repository Access Repository
Note: Clicking the button above will open the full text document at the original institutional repository in a new window.
Cover Image

Fingerprinting Encrypted Tunnel Endpoints

Dissertation (MSc (Computer Science))--University of Pretoria, 2005.

Saved in:
Other Authors: Kourie, Derrick G.
Format: Thesis
Published: University of Pretoria 2013
Subjects:
Fingerprinting
Network forensics
Protocol analysis
Ipsec
Ike
UCTD
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1867613716889993216
access_status_str Open Access
author2 Kourie, Derrick G.
author_browse Kourie, Derrick G.
author_facet Kourie, Derrick G.
collection Thesis
dc_rights_str_mv © 2005, University of Pretoria. All rights reserved. The copyright in this work vests in the University of Pretoria. No part of this work may be reproduced or transmitted in any form or by any means, without the prior written permission of the University of Pretoria.
description Dissertation (MSc (Computer Science))--University of Pretoria, 2005.
format Thesis
id oai:repository.up.ac.za:2263/25351
institution University of Pretoria (South Africa)
last_indexed 2026-06-10T12:40:34.602Z
license_str Other — see source repository
provenance_str_mv Harvested via OAI-PMH from UPSpace — University of Pretoria Institutional Repository
publishDate 2013
publishDateRange 2013
publishDateSort 2013
publisher University of Pretoria
publisherStr University of Pretoria
record_format dspace
source_str UPSpace — University of Pretoria Institutional Repository
spelling oai:repository.up.ac.za:2263/25351 Fingerprinting Encrypted Tunnel Endpoints Kourie, Derrick G. Eloff, Jan H.P. vafa@cs.up.ac.za Izadinia, Vafa Dario Fingerprinting Network forensics Protocol analysis Ipsec Ike UCTD Dissertation (MSc (Computer Science))--University of Pretoria, 2005. Operating System fingerprinting is a reconnaissance method used by Whitehats and Blackhats alike. Current techniques for fingerprinting do not take into account tunneling protocols, such as IPSec, SSL/TLS, and SSH, which effectively `wrap` network traffic in a ciphertext mantle, thus potentially rendering passive monitoring ineffectual. Whether encryption makes VPN tunnel endpoints immune to fingerprinting, or yields the encrypted contents of the VPN tunnel entirely indistinguishable, is a topic that has received modest coverage in academic literature. This study addresses these question by targeting two tunnelling protocols: IPSec and SSL/TLS. A new fingerprinting methodology is presented, several fingerprinting discriminants are identified, and test results are set forth, showing that endpoint identities can be uncovered, and that some of the contents of encrypted VPN tunnels can in fact be discerned. Computer Science unrestricted 2013-09-06T20:54:21Z 2005-06-09 2013-09-06T20:54:21Z 2005-02-21 2005 2005-06-09 Dissertation Izadinia, V 2005, Fingerprinting Encrypted Tunnel Endpoints, MSc dissertation, University of Pretoria, Pretoria, viewed yymmdd < http://hdl.handle.net/2263/25351 > http://hdl.handle.net/2263/25351 http://upetd.up.ac.za/thesis/available/etd-06092005-093203/ © 2005, University of Pretoria. All rights reserved. The copyright in this work vests in the University of Pretoria. No part of this work may be reproduced or transmitted in any form or by any means, without the prior written permission of the University of Pretoria. application/pdf University of Pretoria
spellingShingle Fingerprinting
Network forensics
Protocol analysis
Ipsec
Ike
UCTD
Fingerprinting Encrypted Tunnel Endpoints
title Fingerprinting Encrypted Tunnel Endpoints
title_full Fingerprinting Encrypted Tunnel Endpoints
title_fullStr Fingerprinting Encrypted Tunnel Endpoints
title_full_unstemmed Fingerprinting Encrypted Tunnel Endpoints
title_short Fingerprinting Encrypted Tunnel Endpoints
title_sort fingerprinting encrypted tunnel endpoints
topic Fingerprinting
Network forensics
Protocol analysis
Ipsec
Ike
UCTD
url http://hdl.handle.net/2263/25351
http://upetd.up.ac.za/thesis/available/etd-06092005-093203/

Similar Items