7 October 2016 A network monitor for HTTPS protocol based on proxy
Author Affiliations +
Proceedings Volume 9902, Fourth International Conference on Wireless and Optical Communications; 99020S (2016) https://doi.org/10.1117/12.2261978
Event: Fourth International Conference on Wireless and Optical Communications, 2016, Beijing, China
Abstract
With the explosive growth of harmful Internet information such as pornography, violence, and hate messages, network monitoring is essential. Traditional network monitors is based mainly on bypass monitoring. However, we can’t filter network traffic using bypass monitoring. Meanwhile, only few studies focus on the network monitoring for HTTPS protocol. That is because HTTPS data is in the encrypted traffic, which makes it difficult to monitor. This paper proposes a network monitor for HTTPS protocol based on proxy. We adopt OpenSSL to establish TLS secure tunes between clients and servers. Epoll is used to handle a large number of concurrent client connections. We also adopt Knuth- Morris-Pratt string searching algorithm (or KMP algorithm) to speed up the search process. Besides, we modify request packets to reduce the risk of errors and modify response packets to improve security. Experiments show that our proxy can monitor the content of all tested HTTPS websites efficiently with little loss of network performance.
© (2016) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Yangxin Liu, Yangxin Liu, Lingcui Zhang, Lingcui Zhang, Shuguang Zhou, Shuguang Zhou, Fenghua Li, Fenghua Li, } "A network monitor for HTTPS protocol based on proxy", Proc. SPIE 9902, Fourth International Conference on Wireless and Optical Communications, 99020S (7 October 2016); doi: 10.1117/12.2261978; https://doi.org/10.1117/12.2261978
PROCEEDINGS
7 PAGES


SHARE
Back to Top