Article: Desktop and mobile operating system fingerprinting based on IPv6 protocol using machine learning algorithms Journal: International Journal of Security and Networks (IJSN) 2022 Vol.17 No.1 pp.1 - 12 Abstract: Operating system (OS) fingerprinting tools are essential to network security because of their relationship to vulnerability scanning and penetrating testing. Although OS identification is traditionally performed by passive or active tools, more contributions have focused on IPv4 than IPv6. This paper proposes a new methodology based on machine learning algorithms to build classification models to identify IPv6 OS fingerprinting using a newly created dataset. Unlike other proposals that mainly depend on TCP and IP generic features; this work adds other features to improve the detection accuracy. It also considers OSes installed in mobiles (Android and iOS). The experimental results have shown that the algorithms achieved high and acceptable results in classifying OSes. KNN and DT achieved high accuracy of up to 99%. SVM and GNB achieved 81% and 75%, respectively. Moreover, KNN, RF and DT achieved the best recall, precision, and f-score with almost the same as the achieved accuracy. Inderscience Publishers - linking academia, business and industry through research

Title: Desktop and mobile operating system fingerprinting based on IPv6 protocol using machine learning algorithms

Authors: Saeed Salah; Mohammad Abu Alhawa; Raid Zaghal

Addresses: Department of Computer Science, Al-Quds University, Jerusalem P.O. Box 20002, Palestine ' Department of Computer Science, Al-Quds University, Jerusalem P.O. Box 20002, Palestine ' Department of Computer Science, Al-Quds University, Jerusalem P.O. Box 20002, Palestine

Abstract: Operating system (OS) fingerprinting tools are essential to network security because of their relationship to vulnerability scanning and penetrating testing. Although OS identification is traditionally performed by passive or active tools, more contributions have focused on IPv4 than IPv6. This paper proposes a new methodology based on machine learning algorithms to build classification models to identify IPv6 OS fingerprinting using a newly created dataset. Unlike other proposals that mainly depend on TCP and IP generic features; this work adds other features to improve the detection accuracy. It also considers OSes installed in mobiles (Android and iOS). The experimental results have shown that the algorithms achieved high and acceptable results in classifying OSes. KNN and DT achieved high accuracy of up to 99%. SVM and GNB achieved 81% and 75%, respectively. Moreover, KNN, RF and DT achieved the best recall, precision, and f-score with almost the same as the achieved accuracy.

Keywords: operating system; fingerprinting; IPv6; network security; machine learning; mobile operating system; performance measures.

DOI: 10.1504/IJSN.2022.122543

International Journal of Security and Networks, 2022 Vol.17 No.1, pp.1 - 12

Received: 15 Nov 2020
Accepted: 15 Jan 2021
Published online: 03 May 2022 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: Desktop and mobile operating system fingerprinting based on IPv6 protocol using machine learning algorithms

Keep up-to-date