Differentiating ethernet devices through SNR maximization

Thumbnail Image
Date
2006-01-01
Authors
Gerdes, Ryan
Major Professor
Advisor
Committee Member
Journal Title
Journal ISSN
Volume Title
Publisher
Altmetrics
Authors
Research Projects
Organizational Units
Organizational Unit
Electrical and Computer Engineering

The Department of Electrical and Computer Engineering (ECpE) contains two focuses. The focus on Electrical Engineering teaches students in the fields of control systems, electromagnetics and non-destructive evaluation, microelectronics, electric power & energy systems, and the like. The Computer Engineering focus teaches in the fields of software systems, embedded systems, networking, information security, computer architecture, etc.

History
The Department of Electrical Engineering was formed in 1909 from the division of the Department of Physics and Electrical Engineering. In 1985 its name changed to Department of Electrical Engineering and Computer Engineering. In 1995 it became the Department of Electrical and Computer Engineering.

Dates of Existence
1909-present

Historical Names

  • Department of Electrical Engineering (1909-1985)
  • Department of Electrical Engineering and Computer Engineering (1985-1995)

Related Units

Journal Issue
Is Version Of
Versions
Series
Abstract

The Detecting Intrusions at Layer ONe (DILON) project investigates the use of the digital and analog characteristics of digital devices for security purposes. To this end, we present a method capable of identifying Ethernet cards based upon minute variations in their network signaling resulting from hardware and manufacturing inconsistencies, using an optimal detector, the matched filter. Our results indicate that a matched filter can easily discriminate between Ethernet cards of different models, and with sufficient preprocessing of data, cards of the same model, to an acceptable degree of accuracy. Several non-traditional applications of the filter are presented in order to improve its ability to discriminate between signals from seemingly identical devices of the same manufacturing lot. The experimental results of applying these filters to three different models of Ethernet cards, totaling 16 devices, are presented and discussed. Important applications of this technology include intrusion detection (discovering node impersonation and network tampering), authentication (preventing unauthorized access to the physical network), forensic data collection (tying a physical device to a specific network incident), and assurance monitoring (determining whether a device will or is in the process of failing). Open questions include identifying, tracking, and adapting to long-term changes in system behavior caused by device aging, and how to cope with the intermittent connectivity of devices on the network.

Comments
Description
Keywords
Citation
Source
Copyright
Sun Jan 01 00:00:00 UTC 2006