Denial of Service - IT Library : ZDNet Asia

White Papers

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Attrition Defenses for a Peer-to-Peer Digital Preservation System 2007-01-08 01:00:33 Hewlett-Packard

In peer-to-peer systems, attrition attacks include both traditional, network-level denial of service attacks as well as application-level attacks in which malign peers conspire to waste loyal peers' resources. This paper describes several defenses for the LOCKSS peer-to-peer digital preservation system that help ensure that application level attrition attacks even from powerful adversaries are less effective than simple network-level attacks, and that network-level attacks must be intense, widespread, and prolonged to impair the system.

DDoS-Resilient Scheduling to Counter Application Layer Attacks Under Imperfect Detection 2007-01-07 01:00:31 Hewlett-Packard

Countering Distributed Denial of Service (DDoS) attacks is becoming ever more challenging with the vast resources and techniques increasingly available to attackers. This paper considers sophisticated attacks that are protocol-compliant, non-intrusive, and utilize legitimate application-layer requests to overwhelm system resources. The authors characterize application layer resource attacks as either request flooding, asymmetric, or repeated one-shot, on the basis of the application workload parameters that they exploit. To protect servers from these attacks, they propose a counter-mechanism that consists of suspicion assignment mechanism and a DDoS-resilient scheduler, DDoS Shield.

ACACIA: A Certificate-Based Access-Controlled Internet Architecture 2006-12-09 01:00:18 Alcatel-Lucent

The current Internet architecture supports open connectivity, i.e., any host can send traffic to any other host. This has resulted in a number of security problems such as Distributed Denial-of-Service (DDoS) attacks, worms etc. This paper proposes ACACIA - A Certificate-based Access-Controlled Internet Architecture. In ACACIA, a source must first obtain an access certificate in order to send packets to a destination. This access request is routed through a separate DDoS-resilient Access Control Infrastructure (ACI). The ACI is based on Distributed Hash Table-based servers that isolates attack requests using a load-adaptive replication strategy.

Hawaii Safeguards Schools Statewide Using Intrusion Protection Systems From TippingPoint 2006-10-20 01:00:16 3Com

In 2004, officials at the Hawaii Department Of Education (HIDOE), the oldest public school system west of the Mississippi, confronted what school districts nationwide dread. The notorious Blaster worm struck the local area network (LAN) of one of its 275 K-12 schools and spread like wildfire across the district's Wide Area Network (WAN). The attack was a costly lesson. HIDOE's schools rely heavily on its wired and wireless LAN/WAN infrastructure for teaching and administration, and the statewide school district could not afford another attack. After dismissing anti-virus software solutions because of their ineffectiveness against spyware and Denial of Service (DoS) attacks, HIDOE assessed Intrusion Prevention Systems (IPS) from McAfee, Juniper Networks and TippingPoint, a division of 3Com.

Southern California University Turns Back Denial of Service Attacks With TippingPoint Intrusion Prevention Systems 2006-10-20 01:00:16 3Com

Deploying its first network in 1999 brought University of Redlands a lot more than connectivity to support its 5,000 faculty, students and staff. It also triggered the onset of crippling Denial of Service (DoS) attacks that compromised the Southern California liberal arts and sciences institution's academic research and communications. With its firewalls clearly unable to combat the DoS threats, the Redlands IT department sought an alternative solution that would provide the comprehensive and pervasive protection it required, but with one important caveat. The security solution also had to interoperate seamlessly with the university's Cisco Gigabit network. The IT department learned of the TippingPoint Intrusion Prevention System (IPS) from 3Com.

Plugging the Leaks: Proven Approaches for Securing Corporate Email 2006-08-28 13:07:22 Proofpoint

What's at stake with messaging security? Everything from jobs to a company's reputation�the very livelihood of the organization and its ability to compete.

Besides the obvious business need to safeguard proprietary information from competitors, news organizations, financial institutions and the general public, there are serious penalties for disclosure of certain types of private, sensitive and confidential information.

Companies need to control and filter outbound messages to mitigate the risk of this confidential information leaking into public view. How can IT managers address this challenge?

Read this paper from Proofpoint to learn:

Why organizations need to monitor all outbound protocols, including email, webmail, URL filtering and FTP.

Five initial best practices for managing content in and out of the enterprise.

The impact violations of compliance regulations can have on your organization.

Webcast: If it Ain't Broke, Break Into It: Best Practices for Penetration Testing and Remediation 2006-09-15 15:09:17 Core Security

Organizations spend a great deal of time and money securing their network perimeters from external threats. However, nearly half of the security breaches that were made public in 2005 were from insider attacks. Unless companies test their systems completely, they are leaving themselves wide open to insiders who pose a huge risk to the network's safety.

Check out this on-demand Webcast, sponsored by Core Security and PatchLink, to hear Charles Kolodgy, Research Director with leading analyst firm IDC, Chris Andrew, Vice President of Security Technologies at PatchLink, and Max Caceres, Director of Product Management at Core Security, discuss these topics and more:

The Security Conundrum (threats and IT deployment) and why security is challenging and requires planning, not just reaction.

How enterprises are trying to solve their security problems and why those options work or don't work as intended.

The Security and Vulnerability Management (SVM) market and how SVM helps enterprises address security problems.

Why patching/remediation and penetration testing are essential to the ESRM

Best practices and resources for testing your network for insider threats, including how to break into a Linux or Windows box within seconds.

Co-sponsored by:

Don't Dread that Network Audit - Compliance with Government Regulation and Industry Standards 2006-10-28 11:16:57 Qualys

Digital crime incidents are rising rapidly as criminals become ever more sophisticated and ambitious. Organized crime is now taking an active role in electronic thefts. This leaves businesses with mounting financial losses and the additional cost of keeping perpetrators at bay. Security administrators need to be more proactive about preventing attacks, making vulnerability assessments a crucial tool in their portfolio. Learn more in part two of this four-part Podcast series.

Listen to these other parts:
--There's a Hole in Your Network - Vulnerability Management Is No Mystery

--How One Organization Conquered the Audit Challenge

--On-demand Vulnerability Management

Email Security Doesn't need to be a gamble 2006-08-09 01:00:11 CipherTrust

Email security doesn't have to be a gamble CipherTrust provides a consolidated messaging security appliance which enables organisations to eliminate spam, viruses, malware and other email forms of identify fraud. Consolidation enables: - simplified administration - freed resource - enhanced security - increased administrator and user productivity - reduced costs - increased user trust Download our FREE white paper ..

There's a Hole in Your Network - Vulnerability Management Is No Mystery 2006-10-28 11:18:10 Qualys

Open networks and supply chain integration create great business opportunities but also substantial security risks. The bad guys are using more sophisticated tools to create viruses, worms, rootkits and other attacks, and malware is spreading faster than ever. Learn how vulnerability management allows you to keep on top of these problems by identifying an organization's greatest security vulnerabilities and proactively recommending fixes, in part one of this four-part Podcast series.

Listen to these other parts:
--Don't Dread that Network Audit - Compliance with Government Regulation and Industry Standards

--How One Organization Conquered the Audit Challenge

--On-demand Vulnerability Management

Jump to [1] 2 3 4 5 6 7 8

Title	Date Added	Company
Attrition Defenses for a Peer-to-Peer Digital Preservation System	2007-01-08 01:00:33	Hewlett-Packard
In peer-to-peer systems, attrition attacks include both traditional, network-level denial of service attacks as well as application-level attacks in which malign peers conspire to waste loyal peers' resources. This paper describes several defenses for the LOCKSS peer-to-peer digital preservation system that help ensure that application level attrition attacks even from powerful adversaries are less effective than simple network-level attacks, and that network-level attacks must be intense, widespread, and prolonged to impair the system.
DDoS-Resilient Scheduling to Counter Application Layer Attacks Under Imperfect Detection	2007-01-07 01:00:31	Hewlett-Packard
Countering Distributed Denial of Service (DDoS) attacks is becoming ever more challenging with the vast resources and techniques increasingly available to attackers. This paper considers sophisticated attacks that are protocol-compliant, non-intrusive, and utilize legitimate application-layer requests to overwhelm system resources. The authors characterize application layer resource attacks as either request flooding, asymmetric, or repeated one-shot, on the basis of the application workload parameters that they exploit. To protect servers from these attacks, they propose a counter-mechanism that consists of suspicion assignment mechanism and a DDoS-resilient scheduler, DDoS Shield.
ACACIA: A Certificate-Based Access-Controlled Internet Architecture	2006-12-09 01:00:18	Alcatel-Lucent
The current Internet architecture supports open connectivity, i.e., any host can send traffic to any other host. This has resulted in a number of security problems such as Distributed Denial-of-Service (DDoS) attacks, worms etc. This paper proposes ACACIA - A Certificate-based Access-Controlled Internet Architecture. In ACACIA, a source must first obtain an access certificate in order to send packets to a destination. This access request is routed through a separate DDoS-resilient Access Control Infrastructure (ACI). The ACI is based on Distributed Hash Table-based servers that isolates attack requests using a load-adaptive replication strategy.
Hawaii Safeguards Schools Statewide Using Intrusion Protection Systems From TippingPoint	2006-10-20 01:00:16	3Com
In 2004, officials at the Hawaii Department Of Education (HIDOE), the oldest public school system west of the Mississippi, confronted what school districts nationwide dread. The notorious Blaster worm struck the local area network (LAN) of one of its 275 K-12 schools and spread like wildfire across the district's Wide Area Network (WAN). The attack was a costly lesson. HIDOE's schools rely heavily on its wired and wireless LAN/WAN infrastructure for teaching and administration, and the statewide school district could not afford another attack. After dismissing anti-virus software solutions because of their ineffectiveness against spyware and Denial of Service (DoS) attacks, HIDOE assessed Intrusion Prevention Systems (IPS) from McAfee, Juniper Networks and TippingPoint, a division of 3Com.
Southern California University Turns Back Denial of Service Attacks With TippingPoint Intrusion Prevention Systems	2006-10-20 01:00:16	3Com
Deploying its first network in 1999 brought University of Redlands a lot more than connectivity to support its 5,000 faculty, students and staff. It also triggered the onset of crippling Denial of Service (DoS) attacks that compromised the Southern California liberal arts and sciences institution's academic research and communications. With its firewalls clearly unable to combat the DoS threats, the Redlands IT department sought an alternative solution that would provide the comprehensive and pervasive protection it required, but with one important caveat. The security solution also had to interoperate seamlessly with the university's Cisco Gigabit network. The IT department learned of the TippingPoint Intrusion Prevention System (IPS) from 3Com.
Plugging the Leaks: Proven Approaches for Securing Corporate Email	2006-08-28 13:07:22	Proofpoint
What's at stake with messaging security? Everything from jobs to a company's reputation�the very livelihood of the organization and its ability to compete. Besides the obvious business need to safeguard proprietary information from competitors, news organizations, financial institutions and the general public, there are serious penalties for disclosure of certain types of private, sensitive and confidential information. Companies need to control and filter outbound messages to mitigate the risk of this confidential information leaking into public view. How can IT managers address this challenge? Read this paper from Proofpoint to learn: Why organizations need to monitor all outbound protocols, including email, webmail, URL filtering and FTP. Five initial best practices for managing content in and out of the enterprise. The impact violations of compliance regulations can have on your organization.
Webcast: If it Ain't Broke, Break Into It: Best Practices for Penetration Testing and Remediation	2006-09-15 15:09:17	Core Security
Organizations spend a great deal of time and money securing their network perimeters from external threats. However, nearly half of the security breaches that were made public in 2005 were from insider attacks. Unless companies test their systems completely, they are leaving themselves wide open to insiders who pose a huge risk to the network's safety. Check out this on-demand Webcast, sponsored by Core Security and PatchLink, to hear Charles Kolodgy, Research Director with leading analyst firm IDC, Chris Andrew, Vice President of Security Technologies at PatchLink, and Max Caceres, Director of Product Management at Core Security, discuss these topics and more: The Security Conundrum (threats and IT deployment) and why security is challenging and requires planning, not just reaction. How enterprises are trying to solve their security problems and why those options work or don't work as intended. The Security and Vulnerability Management (SVM) market and how SVM helps enterprises address security problems. Why patching/remediation and penetration testing are essential to the ESRM Best practices and resources for testing your network for insider threats, including how to break into a Linux or Windows box within seconds. Co-sponsored by:
Don't Dread that Network Audit - Compliance with Government Regulation and Industry Standards	2006-10-28 11:16:57	Qualys
Digital crime incidents are rising rapidly as criminals become ever more sophisticated and ambitious. Organized crime is now taking an active role in electronic thefts. This leaves businesses with mounting financial losses and the additional cost of keeping perpetrators at bay. Security administrators need to be more proactive about preventing attacks, making vulnerability assessments a crucial tool in their portfolio. Learn more in part two of this four-part Podcast series. Listen to these other parts: --There's a Hole in Your Network - Vulnerability Management Is No Mystery --How One Organization Conquered the Audit Challenge --On-demand Vulnerability Management
Email Security Doesn't need to be a gamble	2006-08-09 01:00:11	CipherTrust
Email security doesn't have to be a gamble CipherTrust provides a consolidated messaging security appliance which enables organisations to eliminate spam, viruses, malware and other email forms of identify fraud. Consolidation enables: - simplified administration - freed resource - enhanced security - increased administrator and user productivity - reduced costs - increased user trust Download our FREE white paper ..
There's a Hole in Your Network - Vulnerability Management Is No Mystery	2006-10-28 11:18:10	Qualys
Open networks and supply chain integration create great business opportunities but also substantial security risks. The bad guys are using more sophisticated tools to create viruses, worms, rootkits and other attacks, and malware is spreading faster than ever. Learn how vulnerability management allows you to keep on top of these problems by identifying an organization's greatest security vulnerabilities and proactively recommending fixes, in part one of this four-part Podcast series. Listen to these other parts: --Don't Dread that Network Audit - Compliance with Government Regulation and Industry Standards --How One Organization Conquered the Audit Challenge --On-demand Vulnerability Management

Security

Featured Whitepapers

Member Login

Business

Intelligence Summit

HP Simply StorageWorks D2D Backup System

Industry Watch: Manufacturing for Retail