{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,1]],"date-time":"2025-11-01T13:48:40Z","timestamp":1762004920664,"version":"build-2065373602"},"reference-count":13,"publisher":"MDPI AG","issue":"4","license":[{"start":{"date-parts":[[2017,10,21]],"date-time":"2017-10-21T00:00:00Z","timestamp":1508544000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Future Internet"],"abstract":"<jats:p>Fingerprinting is a process of identifying the remote network devices and services running on the devices, including operating systems (OS) of the devices, and hosts running different OSs. Several research proposals and commercial products are available in the market to defeat fingerprinting. However, they have performance limitations and expose themselves to attackers. In this paper, we utilize some real-time fault-tolerance concepts (viz. real-time\/dynamic, detection\/locating, confinement\/localizing and masking\/decoy) to propose a plug-and-play adaptive middleware architecture called Secure Dynamic Middleware (SDMw) with a view to defeat attackers fingerprinting the network, without exposing itself to the attackers. We verify that the proposed scheme works seamlessly and requires zero-configuration at the client side.<\/jats:p>","DOI":"10.3390\/fi9040067","type":"journal-article","created":{"date-parts":[[2017,10,23]],"date-time":"2017-10-23T04:32:19Z","timestamp":1508733139000},"page":"67","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["SDMw: Secure Dynamic Middleware for Defeating Port and OS Scanning"],"prefix":"10.3390","volume":"9","author":[{"given":"Dalal","family":"Hanna","sequence":"first","affiliation":[{"name":"Department of Computer Science and Information Technology, La Trobe University, Victoria 3086, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8272-4413","authenticated-orcid":false,"given":"Prakash","family":"Veeraraghavan","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Information Technology, La Trobe University, Victoria 3086, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ben","family":"Soh","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Information Technology, La Trobe University, Victoria 3086, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2017,10,21]]},"reference":[{"key":"ref_1","unstructured":"(2017, September 25). Cisco, Global IP Traffic Forecast and Methodology. Available online: http:\/\/www.hbtf.org\/files\/cisco_IPforecast.pdf."},{"key":"ref_2","unstructured":"Davidoff, S., and Ham, J. (2012). Network Forensics: Tracking Hackers through Cyberspace, Prentice Hall Publication."},{"key":"ref_3","unstructured":"Gordon Foydor Lyon (2017, September 25). Nmap: The Network Mapper-Free Security Scanner. Available online: https:\/\/nmap.org."},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"93","DOI":"10.1109\/TDSC.2005.26","article-title":"Remote physical device fingerprinting","volume":"2","author":"Kohno","year":"2005","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"2196","DOI":"10.1109\/TNET.2015.2447492","article-title":"Hershel: Single-Packet OS Fingerprinting","volume":"24","author":"Shamsi","year":"2016","journal-title":"IEEE\/ACM Trans. Netw."},{"key":"ref_6","unstructured":"Gordon Foydor Lyon (2017, September 25). Available online: http:\/\/phrack.org\/issues\/51\/11.html#article."},{"key":"ref_7","unstructured":"Gordon Foydor Lyon (2008). Nmap, Network Scanning, Com. Pub. Insecure."},{"key":"ref_8","unstructured":"Dokas, P., Ertoz, L., Kumar, V., Lazarevic, A., Srivastava, J., and Tan, P. (2002, January 1\u20133). Data mining for network intrusion detection. Proceedings of the NSF Workshop on Next Generation Data Mining, Baltimore, MD, USA."},{"key":"ref_9","unstructured":"Soniya, B., and Wisey, M. (December, January 30). Detection of TCP SYN scanning using Packet counts and neural network. Proceedings of the IEEE International Conference on Signal Image Technology and Internet Based Systems, SITIS, Bali, Indonesia."},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Baig, H.U., and Kamran, F. (2007, January 23\u201324). Detection of Port and network scan using time independent feature set. Proceedings of the IEEE Conference on Intelligence and Security Informatics, New Brunswick, NJ, USA.","DOI":"10.1109\/ISI.2007.379554"},{"key":"ref_11","unstructured":"Leckie, C., and Kotagiri, R. (2002, January 15\u201319). A probabilistic approach to detecting network scans. Proceedings of the Eighth IEEE Network Operations and Management symposium (NOMS), Florence, Italy."},{"key":"ref_12","unstructured":"Fall, K.R., and Richard Stevens, W. (2012). TCP\/IP Illustrated, Volume 1: The Protocols, Addison-Wesley Professional Computing."},{"key":"ref_13","unstructured":"Naga Raju, P. (2005). State-of-Art Intrusion Detection: Technologies, Challenges and Evaluation. [Master Thesis, Linkoping University]."}],"container-title":["Future Internet"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1999-5903\/9\/4\/67\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T18:48:04Z","timestamp":1760208484000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1999-5903\/9\/4\/67"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,10,21]]},"references-count":13,"journal-issue":{"issue":"4","published-online":{"date-parts":[[2017,12]]}},"alternative-id":["fi9040067"],"URL":"https:\/\/doi.org\/10.3390\/fi9040067","relation":{},"ISSN":["1999-5903"],"issn-type":[{"type":"electronic","value":"1999-5903"}],"subject":[],"published":{"date-parts":[[2017,10,21]]}}}