IEEE Transactions on Professional Communication Feb 2005

Remote Physical Device Fingerprinting

T. Kohno ; A. Broido ; K.C. Claffy

Abstract

We introduce the area of remote physical device fingerprinting, or fingerprinting a physical device, as opposed to an operating system or class of devices, remotely, and without the fingerprinted device's known cooperation. We accomplish this goal by exploiting small, microscopic deviations in device hardware: clock skews. Our techniques do not require any modification to the fingerprinted devices. Our techniques report consistent measurements when the measurer is thousands of miles, multiple hops, and tens of milliseconds away from the fingerprinted device and when the fingerprinted device is connected to the Internet from different locations and via different access technologies. Further, one can apply our passive and semipassive techniques when the fingerprinted device is behind a NAT or firewall, and. also when the device's system time is maintained via NTP or SNTP. One can use our techniques to obtain information about whether two devices on the Internet, possibly shifted in time or IP addresses, are actually the same physical device. Example applications include: computer forensics; tracking, with some probability, a physical device as it connects to the Internet from different public access points; counting the number of devices behind a NAT even when the devices use constant or random IP IDs; remotely probing a block of addresses to determine if the addresses correspond to virtual hosts, e.g., as part of a virtual honeynet; and unanonymizing anonymized network traces.

Journal
IEEE Transactions on Professional Communication
Published
2005-02-01
DOI
10.1109/tdsc.2005.26
CompPile
Open Access
Closed
Topics
digital rhetoric
Export
BibTeX RIS

Citation Context

Cited by in this index (0)

No articles in this index cite this work.

References (37)

  1. (2004)
    Endace measurement systems
  2. (2004)
    Nmap free security scanner
  3. (2004)
    Project details for p0f
  4. (2004)
    VMware virtual infrastructure
  5. (2004)
    Xprobe official home
Show all 37 →
  1. 10.1109/INFCOM.2003.1209232
  2. 10.1145/637201.637243
  3. 10.1007/978-3-540-45172-3_24
  4. 10.1007/978-3-540-31966-5_22
  5. Broido
    Radon Spectroscopy of Inter-Packet Delay
  6. 10.1145/885651.781077
  7. Donnelly (2002)
    High Precision Timing In Passive Measurements of Data Networks
  8. 10.1137/0213003
  9. 10.1145/885651.781049
  10. Graham (1997)
    Dag—A Cell Capture Board for ATM Measurement Systems
  11. Graham (1972)
    An Efficient Algorithm for Determining the Convex Hull of a Finite Planar Set
    Information Processing Letters  
  12. 10.1145/863955.863968
  13. 10.17487/rfc1323
  14. Keys
    The Architecture of the Coralreef Internet Traffic Monitoring Software Suite
  15. 10.1109/SP.2005.18
  16. McDanel (2001)
    TCP Timestamping and Remotely Gathering Uptime Information
  17. 10.1137/0212052
  18. 10.1145/505202.505236
  19. 10.17487/rfc2030
  20. 10.17487/rfc1305
  21. 10.1109/INFCOM.1999.749287
  22. 10.1145/570681.570689
  23. 10.1145/511399.511336
  24. 10.1145/277858.277865
  25. 10.17487/rfc0792
  26. Provos
    A Virtual Honeypot Framework
  27. Rager (2005)
    XMIT_ID version 2.61
  28. 10.1145/584091.584093
  29. 10.1145/1028788.1028817
  30. Veysset (2002)
    New Tool and Technique for Remote Operating System Fingerprinting
  31. 10.1145/505202.505234
  32. 10.1109/ICNP.2002.1181415
CrossRef global citation count: 402 View in citation network → Build reading path →

Related Articles

  1. Computers and Composition Jun 2026
    “Article laundry” or “tutor in pocket?”: Multilingual writers’ generative AI-assisted writing in professional settings
    Qianqian Zhang-Wu
    writing pedagogy teacher development professional writing qualitative research digital rhetoric artificial intelligence multilingual writers
  2. Computers and Composition Jun 2026
    Evaluating students’ Coded animated stories as multimodal narrative composition in the middle school English curriculum
    Len Unsworth
    first-year composition teacher development digital rhetoric multimodality
  3. Computers and Composition Jun 2026
    Historicizing critical discourse about emergent tools and technologies across 40 years of Computers and Composition
    Meghan Velez; Kara Taczak; Matthew D. Bryan
    discourse analysis digital rhetoric
  4. Computers and Composition Jun 2026
    Legacies, commitments, and new challenges: The Sweetland Digital Rhetoric Collaborative interviews three generations of Computers and Composition editors
    Ali Alalem; Alyse Campbell; Thais Rodrigues Cons; Funmilola Fadairo; Nicole Koyuki Golden
    rhetorical criticism collaborative writing digital rhetoric
  5. Computers and Composition Jun 2026
    A quantitative, computational investigation of Computers and Composition: Using topic modeling over time to reveal patterns in textual data
    Stuart Deets
    digital rhetoric