Pushing Alias Resolution to the Limit

Conference paper (2023)

Authors

Taha Albakour Technical University of Berlin

Oliver Gasser Max Planck Institute

G. Smaragdakis

DOI: https://doi.org/10.1145/3618257.3624840

To reference this document use:

http://resolver.tudelft.nl/uuid:cdbfc085-47d1-410c-af83-72050823b7ae

More Info

expand_more

Published Date

2023

Language

English

Abstract

In this paper, we show that utilizing multiple protocols offers a unique opportunity to improve IP alias resolution and dual-stack inference substantially. Our key observation is that prevalent protocols, e.g., SSH and BGP, reply to unsolicited requests with a set of values that can be combined to form a unique device identifier. More importantly, this is possible by just completing the TCP hand-shake. Our empirical study shows that utilizing readily available scans and our active measurements can double the discovered IPv4 alias sets and more than 30× the dual-stack sets compared to the state-of-the-art techniques. We provide insights into our method's accuracy and performance compared to popular techniques.

Files

3618257.3624840.pdf

(pdf | 1.04 Mb)