You Name It, We Analyze It

ShmooCon X - 2014

Presented by: Jim Gilsinn
Date: Saturday January 18, 2014
Time: 18:20 - 18:40
Location: Build It Room
Track: Fire Talks

With the ever increasing number of industrial networking protocols, it can be difficult for vendors, integrators, and end-users to determine how well different products and systems perform in real-world networking situations. Each protocol has their own method of defining traffic streams and message structures. Packet analyzers, like Wireshark, have been developed to interpret individual network packets and can perform rudimentary analysis of traffic streams for well-known packet types. Analyzing industrial protocols usually requires much more massaging of the data and in many cases requires a user to do much of the work by hand. This talk will present a method to break-down industrial traffic streams into the core components necessary to analyze their performance. By identifying a few key fields in each protocol, a user can define their own method to identify individual traffic streams and analyze their performance.

Jim Gilsinn


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats