Scap: Stream-Oriented Network Traffic Capture and Analysis for High-Speed Networks

Many network monitoring applications must analyze traffic beyond the network layer to allow for connection-oriented analysis, and achieve resilience to evasion attempts based on TCP segmentation. However, existing network traffic capture frameworks provide applications with just raw packets, and leave complex operations like flow tracking and TCP stream reassembly to application developers. This gap leads to increased application complexity, longer development time, and most importantly, reduced performance due to excessive data copies between the packet capture subsystem and the stream processing module.

Provided by: Association for Computing Machinery Topic: Security Date Added: Oct 2013 Format: PDF

Find By Topic