Denial of Service - IT Library : ZDNet Asia

Security

White Papers

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

The dirty dozen: preventing common application-level hack attacks 2009-08-03 IBM

As organizations have grown increasingly dependent on online software, the risk of malicious attacks has also become far more serious. Such attacks can bring a business to a standstill, cost a company millions of dollars in lost transactions and potentially tarnish its brand image.

Tags: Intrusion - Tampering, Security Administration, Intrusion - Tampering, Intrusion - Tampering

Using NetFlow Auditor to Assist in Identifying Distributed Denial-of-Service (DDoS) Attacks and Other Network Behavior Anomalies 2009-08-01 IdeaData

This Paper covers how Denial of Service Attacks (DoS) and Distributed Denial of Service Attacks (DDos) can be identified early to mitigate and attack. The paper will reflect a method to alert when changes occur outside of learnt baselines and how new patterns can be recognized when security analysts have access to technology that provides high visibility of traffic from utilization, conversation, packet analysis, packet size distribution analysis and byte usage and standard deviation methods. A game-changing Network Auditing technology called NetFlow Auditor has the potential to enhance the security, reliability, resilience, and trustworthiness of the digital infrastructure which can be used to assist in identifying a DDoS flood or a slow Denial of Service attacks and other network behavior anomalies including Peer-to-Peer (P2P) usage.

Tags: Intrusion - Tampering

Empirical Study of Tolerating Denial-of-Service Attacks With the Fosel Architecture 2009-07-14 Institute of Electrical and Electronics Engineers

Filtering techniques are one of the main approaches to protect applications from Denial of Service Attacks (DoS). However filtering techniques suffer from two main challenges: the accuracy detection of DoS traffic and processing time. Fosel (Filtering with the help of an Overlay Security Layer) has been proposed to protect application sites from Denial-of-Service attacks. The Fosel architecture addresses how an efficient and well-suited filter can be designed to improve the filtering challenges. This paper explores the effectiveness of the Fosel architecture by implementing an experimental testbed. Experimental study shows that by employing the Fosel architecture, DoS attacks have a negligible chance to saturate the target by malicious packets.

Scraping, Denial of Service, and Brute Force Attacks! Oh My!: Identifying and Controlling Automated Clients 2009-07-01 Breach Security

Anti-Automation defenses are critical in today's web application security landscape. Breach Security's product line is uniquely positioned to help organizations address these automated types of attacks. Only through the combination of all of these capabilities can organizations gain true protections against these threats. Many systems will allow the use of weak passwords or cryptographic keys, and users will often choose easy to guess passwords, possibly found in a dictionary. Given this scenario, an attacker would cycle though the dictionary word by word, generating thousands or potentially millions of incorrect guesses search for the valid password. When a guessed password allows access to the system, the brute force attack has been successful and the attacker is able access the account.

Tags: Security Administration, Intrusion - Tampering

Laying the IT Security Foundation - Corralling Conficker and Other Threats in an Evolved Environment 2009-06-01 Lumension

The traditional security approach addresses each individual attack as it crops up through a detect and blocking schema. However in today's ever-changing IT environment, sophisticated threats such as Conficker worm continue to evolve and keep security professionals in an unending game of cat and mouse. Read this paper to learn how to:

Regain control of your environment and address the root cause of attacks
Automate the detection and remediation of OS and application vulnerabilities and mis-configurations
Prevent threats such as Conficker from wreaking havoc on your business
Enforce a trusted application environment

Tags: Intrusion - Tampering, Security Administration, Security Administration, Intrusion - Tampering

Defense Against DoS, Flooding Attacks 2009-05-25 Linkopings Universitet

The following paper concentrates on the means of defense against denial of service attacks. First, some possible and common denial of service attacks are described to give the reader a basic understanding of what is this type of the attacks. The main part of the project is the mechanism, tools and methods used to prevent the denial of service attacks. At the end a short case study along with the description of the small company network is given. When conducting the experiment the author noticed that a successful attack on the networked system is relatively easy as the needed tools are free to download but at the same time the simple means of defense can be applied to make most of the attacks impossible.

Tags: Security Administration, Intrusion - Tampering

Q1 2009 Distributed Denial of Service (DDoS) Report 2009-05-12 Verisign

Contained within the Distributed Denial of Service (DDoS) report for the first Quarter (Q1) of 2009 are news items regarding noteworthy cyber attacks and botnets, the individuals or organizations responsible for their perpetration, arrests and legal developments stemming from these particular incidents, vulnerabilities and exploits that may enable future Denial of Service (DoS) and DDoS activity to occur, and intelligence that such attacks are becoming increasingly more sophisticated.

Inputs of Coma: Static Detection of Denial-of-Service Vulnerabilities 2009-04-24 University of Texas

As networked systems grow in complexity, they are increasingly vulnerable to Denial-of-Service (DoS) attacks involving resource exhaustion. A single malicious input of coma can trigger high-complexity behavior such as deep recursion in a carelessly implemented server, exhausting CPU time or stack space and making the server unavailable to legitimate clients. These DoS attacks exploit the semantics of the target application, are rarely associated with network traffic anomalies, and are thus extremely difficult to detect using conventional methods.

Denial of Service Attacks in Networks With Tiny Buffers 2009-04-08 University of Toronto

Recently, several papers have studied the possibility of shrinking buffer sizes in Internet core routers to just a few dozen packets under certain constraints. If proven right, these results can open doors to building all-optical routers, since a major bottleneck in building such routers is the lack of large optical memories. However, reducing buffer sizes might pose new security risks: it is much easier to fill up tiny buffers, and thus organizing Denial of Service (DoS) attacks seems easier in a network with tiny buffers. To the best of the knowledge, such risks have not been studied before; all the focus has been on performance issues such as throughput, drop rate, and flow completion times.

Dynamic and Auto Responsive Solution for Distributed Denial-of-Service Attacks Detection in ISP Network 2009-04-01

Denial of Service (DoS) attacks and more particularly the distributed ones (DDoS) are one of the latest threat and pose a grave danger to users, organizations and infrastructures of the Internet. Several schemes have been proposed on how to detect some of these attacks, but they suffer from a range of problems, some of them being impractical and others not being effective against these attacks. This paper reports the design principles and evaluation results of proposed framework that autonomously detects and accurately characterizes a wide range of flooding DDoS attacks in ISP network. Attacks are detected by the constant monitoring of propagation of abrupt traffic changes inside ISP network.

Tags: Intrusion - Tampering

Jump to [1] 2 3 4 5 6 7 8 9 10

Cutting-edge technology from premium sponsors

Adaptive Threat Management
High Performance Security for your Distributed Enterprise

Achieve lower TCO, agility, risk mitigation, compliance, and productivity

Webcast series: Cybercrime is a growth industry - is your organisation prepared?
More resources to optimize the security of your enterprise »

Brought to you by:

More Tech Showcases:

Juniper Networks

ad:tech Beijing

17 - 18 Nov 2009

Beijing International Convention Center, Beijing

4th Annual GovTech 2010

27 - 28 Jan 2010

Amara Hotel, Singapore

Int'l Conference on Cloud Computing & Virtualization 2009

25 - 26 Nov 2009

Suntec International Convention & Exhibition Centre, Singapore

KM Asia 2009

24 - 26 Nov 2009

Suntec International Convention & Exhibition Centre, Singapore

ZDNet Asia Top Tech 50 Index

AT&T

Asustek

Canon

Convergys

Ericsson

Hewlett-Packard

Infosys

LogicaCMG

NTT

Samsung

SingTel Group

Toshiba

Xerox

Accenture

Atos Origin

Capgemini

Dell

France Telecom

Hitachi

Intel

Microsoft

Nokia

Satyam Computer Services

Sony

Verizon Communications

ZTE

Alcatel-Lucent

British Telecom

China Mobile

Deutsche Telekom

Fujitsu

Huawei Technologies

LG Electronics

Motorola

Oracle

Seagate Technology

Sun Microsystems

Western Digital

Apple

CSC

Cisco Systems

EMC

Google

IBM

Lenovo Group

NEC

SAP

Siemens IT Solutions & Services

Tata Consultancy Services

Wipro

ZDNet Asia's Top Tech Index will be next updated in 2010.

Cloud Computing & Virtualization Conference 2009
Register & learn how to adopt cloud computing & virtualization technology to your company

IT Salary & Skills Report 2009
Join activeTechPros for free access to the report

More from CBS Interactive

CBS Interactive Inc Sites

About ZDNet Asia |

About CBS Interactive |

ZDNet Asia editorial calendar |

Advertise with us |

Jobs |

Partnership |

Contact Us |

CNET Direct |

CNET Asia |

CNET Asia mobile |

Sitemap

ZDNet.com |

ZDNet Japan |

ZDNet.de |

CNET UK |

CNET.de |

Tech Republic |

BNET |

MP3.com |

activeTechPros |

ZDNet UK |

ZDNet Korea |

ZDNet France |

CNET Australia |

CNET France |

Download.com |

Builder |

GameSpot

ZDNet Australia |

ZDNet Taiwan |

CNET |

CNET Taiwan |

News.com |

Silicon.com |

TV.com |

GameSpot Korea

News | Insight | Reviews | TechGuides | Jobs | Blogs | Videos | Community | Downloads | IT Library |

Get RSS feeds

Title	Date Added	Company
The dirty dozen: preventing common application-level hack attacks	2009-08-03	IBM
As organizations have grown increasingly dependent on online software, the risk of malicious attacks has also become far more serious. Such attacks can bring a business to a standstill, cost a company millions of dollars in lost transactions and potentially tarnish its brand image. Tags: Intrusion - Tampering, Security Administration, Intrusion - Tampering, Intrusion - Tampering
Using NetFlow Auditor to Assist in Identifying Distributed Denial-of-Service (DDoS) Attacks and Other Network Behavior Anomalies	2009-08-01	IdeaData
This Paper covers how Denial of Service Attacks (DoS) and Distributed Denial of Service Attacks (DDos) can be identified early to mitigate and attack. The paper will reflect a method to alert when changes occur outside of learnt baselines and how new patterns can be recognized when security analysts have access to technology that provides high visibility of traffic from utilization, conversation, packet analysis, packet size distribution analysis and byte usage and standard deviation methods. A game-changing Network Auditing technology called NetFlow Auditor has the potential to enhance the security, reliability, resilience, and trustworthiness of the digital infrastructure which can be used to assist in identifying a DDoS flood or a slow Denial of Service attacks and other network behavior anomalies including Peer-to-Peer (P2P) usage. Tags: Intrusion - Tampering
Empirical Study of Tolerating Denial-of-Service Attacks With the Fosel Architecture	2009-07-14	Institute of Electrical and Electronics Engineers
Filtering techniques are one of the main approaches to protect applications from Denial of Service Attacks (DoS). However filtering techniques suffer from two main challenges: the accuracy detection of DoS traffic and processing time. Fosel (Filtering with the help of an Overlay Security Layer) has been proposed to protect application sites from Denial-of-Service attacks. The Fosel architecture addresses how an efficient and well-suited filter can be designed to improve the filtering challenges. This paper explores the effectiveness of the Fosel architecture by implementing an experimental testbed. Experimental study shows that by employing the Fosel architecture, DoS attacks have a negligible chance to saturate the target by malicious packets.
Scraping, Denial of Service, and Brute Force Attacks! Oh My!: Identifying and Controlling Automated Clients	2009-07-01	Breach Security
Anti-Automation defenses are critical in today's web application security landscape. Breach Security's product line is uniquely positioned to help organizations address these automated types of attacks. Only through the combination of all of these capabilities can organizations gain true protections against these threats. Many systems will allow the use of weak passwords or cryptographic keys, and users will often choose easy to guess passwords, possibly found in a dictionary. Given this scenario, an attacker would cycle though the dictionary word by word, generating thousands or potentially millions of incorrect guesses search for the valid password. When a guessed password allows access to the system, the brute force attack has been successful and the attacker is able access the account. Tags: Security Administration, Intrusion - Tampering
Laying the IT Security Foundation - Corralling Conficker and Other Threats in an Evolved Environment	2009-06-01	Lumension
The traditional security approach addresses each individual attack as it crops up through a detect and blocking schema. However in today's ever-changing IT environment, sophisticated threats such as Conficker worm continue to evolve and keep security professionals in an unending game of cat and mouse. Read this paper to learn how to: Regain control of your environment and address the root cause of attacks Automate the detection and remediation of OS and application vulnerabilities and mis-configurations Prevent threats such as Conficker from wreaking havoc on your business Enforce a trusted application environment Tags: Intrusion - Tampering, Security Administration, Security Administration, Intrusion - Tampering
Defense Against DoS, Flooding Attacks	2009-05-25	Linkopings Universitet
The following paper concentrates on the means of defense against denial of service attacks. First, some possible and common denial of service attacks are described to give the reader a basic understanding of what is this type of the attacks. The main part of the project is the mechanism, tools and methods used to prevent the denial of service attacks. At the end a short case study along with the description of the small company network is given. When conducting the experiment the author noticed that a successful attack on the networked system is relatively easy as the needed tools are free to download but at the same time the simple means of defense can be applied to make most of the attacks impossible. Tags: Security Administration, Intrusion - Tampering
Q1 2009 Distributed Denial of Service (DDoS) Report	2009-05-12	Verisign
Contained within the Distributed Denial of Service (DDoS) report for the first Quarter (Q1) of 2009 are news items regarding noteworthy cyber attacks and botnets, the individuals or organizations responsible for their perpetration, arrests and legal developments stemming from these particular incidents, vulnerabilities and exploits that may enable future Denial of Service (DoS) and DDoS activity to occur, and intelligence that such attacks are becoming increasingly more sophisticated.
Inputs of Coma: Static Detection of Denial-of-Service Vulnerabilities	2009-04-24	University of Texas
As networked systems grow in complexity, they are increasingly vulnerable to Denial-of-Service (DoS) attacks involving resource exhaustion. A single malicious input of coma can trigger high-complexity behavior such as deep recursion in a carelessly implemented server, exhausting CPU time or stack space and making the server unavailable to legitimate clients. These DoS attacks exploit the semantics of the target application, are rarely associated with network traffic anomalies, and are thus extremely difficult to detect using conventional methods.
Denial of Service Attacks in Networks With Tiny Buffers	2009-04-08	University of Toronto
Recently, several papers have studied the possibility of shrinking buffer sizes in Internet core routers to just a few dozen packets under certain constraints. If proven right, these results can open doors to building all-optical routers, since a major bottleneck in building such routers is the lack of large optical memories. However, reducing buffer sizes might pose new security risks: it is much easier to fill up tiny buffers, and thus organizing Denial of Service (DoS) attacks seems easier in a network with tiny buffers. To the best of the knowledge, such risks have not been studied before; all the focus has been on performance issues such as throughput, drop rate, and flow completion times.
Dynamic and Auto Responsive Solution for Distributed Denial-of-Service Attacks Detection in ISP Network	2009-04-01
Denial of Service (DoS) attacks and more particularly the distributed ones (DDoS) are one of the latest threat and pose a grave danger to users, organizations and infrastructures of the Internet. Several schemes have been proposed on how to detect some of these attacks, but they suffer from a range of problems, some of them being impractical and others not being effective against these attacks. This paper reports the design principles and evaluation results of proposed framework that autonomously detects and accurately characterizes a wide range of flooding DDoS attacks in ISP network. Attacks are detected by the constant monitoring of propagation of abrupt traffic changes inside ISP network. Tags: Intrusion - Tampering

Security

Member Login

Adaptive Threat Management

ZDNet Asia Top Tech 50 Index