Proceedings of the 2nd International Symposium on Computer, Communication, Control and Automation (ISCCCA 2013)

Design and Implementation of LAN-sensitive Information Interception and Analysis System

Authors
Shaofeng Lin, Weifeng Sun, Linna Fan, Hua Wang
Corresponding Author
Shaofeng Lin
Available Online February 2013.
DOI
https://doi.org/10.2991/isccca.2013.197How to use a DOI?
Keywords
Network Security Monitor, Protocol Analysis, ARP Spoof, WinPcap, TCP/IP
Abstract
The LAN usually hides internal network structure by NAT to share a public IP address in the internal network, and thus it is hard to locate the source host precisely distributing sensitive information for a large-scale information monitoring system by analyzing the intercepted packets. So it is hard to fulfill monitoring work efficiently. This paper puts forward a scheme to intercept and analyze the sensitive information in the LAN environment. It studies the ARP spoofing principle and the sniffer technology based on WINPCAP. The scheme includes 7 modules named NIC capture module, packet filtering module and so on. And it achieves sensitive information filtering and matching by the configured rules, such as "keywords", "URL", "QQ number" and so on. The scheme provides a solution for tracking the source host leaking sensitive information within the LAN.
Open Access
This is an open access article distributed under the CC BY-NC license.

Download article (PDF)

Volume Title
Proceedings of the 2nd International Symposium on Computer, Communication, Control and Automation (ISCCCA 2013)
Series
Advances in Intelligent Systems Research
Publication Date
February 2013
ISBN
978-90-78677-63-5
ISSN
1951-6851
DOI
https://doi.org/10.2991/isccca.2013.197How to use a DOI?
Open Access
This is an open access article distributed under the CC BY-NC license.

Cite this article

TY  - CONF
AU  - Shaofeng Lin
AU  - Weifeng Sun
AU  - Linna Fan
AU  - Hua Wang
PY  - 2013/02
DA  - 2013/02
TI  - Design and Implementation of LAN-sensitive Information Interception and Analysis System
BT  - Proceedings of the 2nd International Symposium on Computer, Communication, Control and Automation (ISCCCA 2013)
PB  - Atlantis Press
SP  - 785
EP  - 787
SN  - 1951-6851
UR  - https://doi.org/10.2991/isccca.2013.197
DO  - https://doi.org/10.2991/isccca.2013.197
ID  - Lin2013/02
ER  -