{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,28]],"date-time":"2025-10-28T10:49:00Z","timestamp":1761648540696,"version":"3.37.3"},"reference-count":13,"publisher":"Wiley","license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100003725","name":"National Research Foundation of Korea","doi-asserted-by":"publisher","award":["2015R1D1A3A01018057","2017-0-00513"],"award-info":[{"award-number":["2015R1D1A3A01018057","2017-0-00513"]}],"id":[{"id":"10.13039\/501100003725","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100010418","name":"Institute for Information & Communications Technology Promotion","doi-asserted-by":"crossref","award":["2015R1D1A3A01018057","2017-0-00513"],"award-info":[{"award-number":["2015R1D1A3A01018057","2017-0-00513"]}],"id":[{"id":"10.13039\/501100010418","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Security and Communication Networks"],"published-print":{"date-parts":[[2018]]},"abstract":"<jats:p>A network protocol defines rules that control communications between two or more machines on the Internet, whereas Automatic Protocol Reverse Engineering (APRE) defines the way of extracting the structure of a network protocol without accessing its specifications. Enough knowledge on undocumented protocols is essential for security purposes, network policy implementation, and management of network resources. This paper reviews and analyzes a total of 39 approaches, methods, and tools towards Protocol Reverse Engineering (PRE) and classifies them into four divisions, approaches that reverse engineer protocol finite state machines, protocol formats, and both protocol finite state machines and protocol formats to approaches that focus directly on neither reverse engineering protocol formats nor protocol finite state machines. The efficiency of all approaches\u2019 outputs based on their selected inputs is analyzed in general along with appropriate reverse engineering inputs format. Additionally, we present discussion and extended classification in terms of automated to manual approaches, known and novel categories of reverse engineered protocols, and a literature of reverse engineered protocols in relation to the seven layers\u2019 OSI (Open Systems Interconnection) model.<\/jats:p>","DOI":"10.1155\/2018\/8370341","type":"journal-article","created":{"date-parts":[[2018,2,20]],"date-time":"2018-02-20T23:32:20Z","timestamp":1519169540000},"page":"1-17","source":"Crossref","is-referenced-by-count":28,"title":["A Survey of Automatic Protocol Reverse Engineering Approaches, Methods, and Tools on the Inputs and Outputs View"],"prefix":"10.1155","volume":"2018","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1620-7888","authenticated-orcid":true,"given":"Baraka D.","family":"Sija","sequence":"first","affiliation":[{"name":"Department of Computer and Information Science, Korea University, Seoul, Republic of Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3013-7011","authenticated-orcid":true,"given":"Young-Hoon","family":"Goo","sequence":"additional","affiliation":[{"name":"Department of Computer and Information Science, Korea University, Seoul, Republic of Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3317-7000","authenticated-orcid":true,"given":"Kyu-Seok","family":"Shim","sequence":"additional","affiliation":[{"name":"Department of Computer and Information Science, Korea University, Seoul, Republic of Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4316-2395","authenticated-orcid":true,"given":"Huru","family":"Hasanova","sequence":"additional","affiliation":[{"name":"Department of Computer and Information Science, Korea University, Seoul, Republic of Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3809-2057","authenticated-orcid":true,"given":"Myung-Sup","family":"Kim","sequence":"additional","affiliation":[{"name":"Department of Computer and Information Science, Korea University, Seoul, Republic of Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"311","reference":[{"key":"1","doi-asserted-by":"publisher","DOI":"10.1145\/2840724"},{"key":"11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"200","DOI":"10.1007\/978-3-642-04444-1_13","volume-title":"ReFormat: automatic reverse engineering of encrypted messages","volume":"5789","year":"2009"},{"key":"16","doi-asserted-by":"publisher","DOI":"10.1155\/2016\/9161723"},{"key":"28","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2013.01.013"},{"key":"35","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2012.08.003"},{"volume-title":"PROVEX: detecting botnets with encrypted command and control channels","year":"2013","key":"36"},{"key":"39","doi-asserted-by":"publisher","DOI":"10.1155\/2015\/962974"},{"year":"2017","key":"41"},{"key":"42","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2017.10.009"},{"key":"43","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2017.09.006"},{"key":"44","doi-asserted-by":"publisher","DOI":"10.1016\/0022-2836(70)90057-4"},{"key":"49","doi-asserted-by":"publisher","DOI":"10.1080\/08839510701853200"},{"year":"2004","key":"54"}],"container-title":["Security and Communication Networks"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2018\/8370341.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2018\/8370341.xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2018\/8370341.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,5,19]],"date-time":"2020-05-19T01:34:45Z","timestamp":1589852085000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.hindawi.com\/journals\/scn\/2018\/8370341\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"references-count":13,"alternative-id":["8370341","8370341"],"URL":"https:\/\/doi.org\/10.1155\/2018\/8370341","relation":{},"ISSN":["1939-0114","1939-0122"],"issn-type":[{"type":"print","value":"1939-0114"},{"type":"electronic","value":"1939-0122"}],"subject":[],"published":{"date-parts":[[2018]]}}}