Show simple item record

dc.contributor.authorGallup, Shelley P.
dc.contributor.authorAnderson, Tom
dc.contributor.authorGarza, Victor (Bob)
dc.contributor.authorIrvine, Nelson
dc.contributor.authorWood, Brian (Woodie)
dc.datePeriod of Performance: 10/01/2016-03/30/2017
dc.date.accessioned2018-04-05T23:57:39Z
dc.date.available2018-04-05T23:57:39Z
dc.date.issued2016
dc.identifier.otherNPS-N16-N201-C
dc.identifier.urihttp://hdl.handle.net/10945/57747
dc.description.abstractThere is no process or system capable of detecting obfuscated network traffic on DOD networks, and the quantity of obfuscated traffic on DOD networks is unknown. The presence of obfuscated traffic on a DOD network creates significant risk from both insider-threat and network-defense perspectives. This study used quantitative correlation and simple network-traffic analysis to identify common characteristics, relationships, and sources of obfuscated traffic. A set of concepts were identified and proposed as a set of testable Key Cyber Concepts (KCCs) for obfuscation behavior. Each characteristic was evaluated individually for its ability to detect obfuscated traffic and in combination in a set of Naive Bayes multi-attribute prediction models. The best performing evaluations used multi-attribute analysis and proved capable of detecting approximately 80 percent of obfuscated traffic in a mixed dataset. By applying the methods and observations of this study, the threat to DOD networks from obfuscation technologies can be greatly reduced (Abstract from LT Kevin Dougherty NPS 2017 thesis “Identification of low latency obfuscated traffic using multi-attribute analysis”.)en_US
dc.description.sponsorshipNaval Research Programen_US
dc.description.sponsorshipPrepared for: Topic Sponsor: N2/N6I, Fleet Cyber Command Research, POC Name: Capt Roy Petty USNen_US
dc.publisherMonterey, California. Naval Postgraduate Schoolen_US
dc.rightsThis publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.en_US
dc.titleDarknet and DoD Networks: Obfuscation, Spoof Detection, and Eliminationen_US
dc.typeReporten_US
dc.contributor.corporateNaval Postgraduate School
dc.contributor.corporateNaval Research Program
dc.contributor.schoolGraduate School of Operations and Information Science (GSOIS)


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record