| The 21 st century is an era of information explosion. People’s daily lives are filled with a variety of instant messaging software which has various and effective functions. However, all kinds of security problems have cropped up at the same time, such as the spread of pestiferous remarks, the stolen of account password, leakage of confidential information and other kind of problems. It brings great trouble to our country, enterprises, and common users. In order to improve this situation, to control the leakage of confidential information effectively and create a safe and healthy Internet environment, the study of intercepting and analyzing network communication packets has become a top priority.This study focused on the network packets of instant messaging software. At first its chatting contents are intercepted and analyzed, then the contents are matched and filtered according to the keywords of confidential information. If a match has been found, its chat and its IP address will be recorded and stored. What’s more, the publisher of information will be traced and punished through a legal device. So it can form a deterrent force, and thus indirectly to prevent leakage of confidential information.The main work of this paper can be summarized as follows:(1) A small local area network for specialized study has been set up. Download and install the latest version of instant messaging software. This paper has selected Fetion V5.4.0 version for the research. Then use this instant messaging software alone in the small local area network to conduct the targeted research;(2) A simple monitoring tool has been obtained by the C ++ programming, then the packet format has been got through the packet capturing analys is within the small LAN. At last the data packet format has been classified and summarized to get the characteristics of different packets.(3)The intercepted packets has been parsed by multidimensional progressive parsing algorithms, and finally the required details have been got, such as IP address, port address, protocol type, chat content, etc.(4) Research on multi-core parallel computing of the computer, then combine with multi-pattern string matching algorithm. Multi-mode parallel string matching algorithm has been used to parse out the contents of the match. Then the sensitive labeled words have been identified. So the intended purpose has been achieved.A multi-dimens ional progressive manner is used to parse the data packets, which could not only parse fast but also could ensure the completeness and accuracy of the data packet. In the process of packet rule marching, multicore parallelism is researched and parallel multi-mode AC automatic calculation method is used, which makes the matching speed much faster and matching efficiency higher. |
PDF Full Text Request