Progressive active inference method of protocol state machine
Protocol state machine active inference is a technique that relies on active automata learning.However, the abstraction of the alphabet and the construction of the mapper present critical challenges.Due to the diversity of messages of the same type, the response types of the same type are different,...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
POSTS&TELECOM PRESS Co., LTD
2023-04-01
|
| Series: | 网络与信息安全学报 |
| Subjects: | |
| Online Access: | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2023023 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841529698515943424 |
|---|---|
| author | Yan PAN Wei LIN Yuefei ZHU |
| author_facet | Yan PAN Wei LIN Yuefei ZHU |
| author_sort | Yan PAN |
| collection | DOAJ |
| description | Protocol state machine active inference is a technique that relies on active automata learning.However, the abstraction of the alphabet and the construction of the mapper present critical challenges.Due to the diversity of messages of the same type, the response types of the same type are different, causing the method of regarding the message types as the alphabet will result in the loss of states or state transitions.To address the issue, message types were refined into subtypes according to the different responses and a progressive active inference method was proposed.The proposed method extracted the state fields from the existing protocol data to construct the initial alphabet and the mapper, and obtained the initial state machine based on active automata learning.It then mutated the existing messages to explore the response sequences, which were inconsistent with the current state machine.The mutated message was regarded as a protocol subtype and added to the alphabet, and a new state machine was inferred progressively based on the new alphabet.In order to reduce the interactions, a pre-response query algorithm was proposed based on prefix matching for the caching mechanism in the active automata learning.The ProLearner tool was utilized to evaluate the proposed method in the context of the SMTP and RSTP protocols.It is verified that the pre-response query method can effectively reduce the number of actual interactions, with an average reduction rate of about 10%. |
| format | Article |
| id | doaj-art-51a5e6f0aced45afb0a7a5e3e594a66a |
| institution | Kabale University |
| issn | 2096-109X |
| language | English |
| publishDate | 2023-04-01 |
| publisher | POSTS&TELECOM PRESS Co., LTD |
| record_format | Article |
| series | 网络与信息安全学报 |
| spelling | doaj-art-51a5e6f0aced45afb0a7a5e3e594a66a2025-01-15T03:16:20ZengPOSTS&TELECOM PRESS Co., LTD网络与信息安全学报2096-109X2023-04-019819359576201Progressive active inference method of protocol state machineYan PANWei LINYuefei ZHUProtocol state machine active inference is a technique that relies on active automata learning.However, the abstraction of the alphabet and the construction of the mapper present critical challenges.Due to the diversity of messages of the same type, the response types of the same type are different, causing the method of regarding the message types as the alphabet will result in the loss of states or state transitions.To address the issue, message types were refined into subtypes according to the different responses and a progressive active inference method was proposed.The proposed method extracted the state fields from the existing protocol data to construct the initial alphabet and the mapper, and obtained the initial state machine based on active automata learning.It then mutated the existing messages to explore the response sequences, which were inconsistent with the current state machine.The mutated message was regarded as a protocol subtype and added to the alphabet, and a new state machine was inferred progressively based on the new alphabet.In order to reduce the interactions, a pre-response query algorithm was proposed based on prefix matching for the caching mechanism in the active automata learning.The ProLearner tool was utilized to evaluate the proposed method in the context of the SMTP and RSTP protocols.It is verified that the pre-response query method can effectively reduce the number of actual interactions, with an average reduction rate of about 10%.http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2023023protocol reverse analysisactive automata learningprotocol state machine inferenceMealy automatamapper |
| spellingShingle | Yan PAN Wei LIN Yuefei ZHU Progressive active inference method of protocol state machine 网络与信息安全学报 protocol reverse analysis active automata learning protocol state machine inference Mealy automata mapper |
| title | Progressive active inference method of protocol state machine |
| title_full | Progressive active inference method of protocol state machine |
| title_fullStr | Progressive active inference method of protocol state machine |
| title_full_unstemmed | Progressive active inference method of protocol state machine |
| title_short | Progressive active inference method of protocol state machine |
| title_sort | progressive active inference method of protocol state machine |
| topic | protocol reverse analysis active automata learning protocol state machine inference Mealy automata mapper |
| url | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2023023 |
| work_keys_str_mv | AT yanpan progressiveactiveinferencemethodofprotocolstatemachine AT weilin progressiveactiveinferencemethodofprotocolstatemachine AT yuefeizhu progressiveactiveinferencemethodofprotocolstatemachine |