Inferring the composition of devices behind a NAT router
(Virtual-only Seminar)
Abstract
Network address translation (NAT) is an essential service for combating the shortage of IPv4 address space and is widely deployed within large enterprise to home networks. However, its ubiquitous use has introduced significant challenges into the management of devices on a network.
Device management is of critical importance to network administrators and security analysts alike to better manage and secure the devices operating on their networks. Techniques to perform device management in the presence of the NAT service are therefore essential. However, recent techniques that rely on network traffic payload content are no longer possible due to widespread encryption standards.
In this seminar, Kyle Millar discusses a technique to estimate the number of devices acting behind a NAT router and the composition of their operating systems; through the exclusive analysis of the IP addresses the router affiliates with. The proposed technique is thus invariant to encryption, lightweight, and widely deployable to distinct network configurations.
Note
The seminar is virtual-only due to the return of additional Covid-19 restrictions.
Online Presentation Details
The seminar will be broadcast using Zoom.
If you wish to participate please register and you will receive an email with the details in the lead up to the event.
Further information
Please contact:
adriel@ieee.org
andrew.mcdonnell@ieee.org
Date and Time
Location
Hosts
Registration
- Date: 04 Aug 2021
- Time: 06:30 PM to 07:30 PM
- All times are (UTC+09:30) Adelaide
-
Add Event to Calendar
- Starts 16 July 2021 03:39 PM
- Ends 04 August 2021 04:30 PM
- All times are (UTC+09:30) Adelaide
- No Admission Charge
Speakers
Kyle Millar of The University of Adelaide
Inferring the composition of devices behind a NAT router
(Virtual-only seminar)
Abstract
Network address translation (NAT) is an essential service for combating the shortage of IPv4 address space and is widely deployed within large enterprise to home networks. However, its ubiquitous use has introduced significant challenges into the management of devices on a network.
Device management is of critical importance to network administrators and security analysts alike to better manage and secure the devices operating on their networks. Techniques to perform device management in the presence of the NAT service are therefore essential. However, recent techniques that rely on network traffic payload content are no longer possible due to widespread encryption standards.
In this seminar, Kyle Millar discusses a technique to estimate the number of devices acting behind a NAT router and the composition of their operating systems; through the exclusive analysis of the IP addresses the router affiliates with. The proposed technique is thus invariant to encryption, lightweight, and widely deployable to distinct network configurations.
Biography:
About the Speaker
Kyle Millar graduated with a Bachelor of Engineering (Computer Systems) and is a PhD student from the University of Adelaide. The focus of his PhD is the use of graph-based machine learning to characterise internet-connected devices through their network communications, and his research is supported by the Defence Science & Technology Group. His other research interests include passive network reconnaissance, graph-based machine learning, and big data analytics.