Denial of Service - IT Library : ZDNet Asia

White Papers

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Attrition Defenses for a Peer-to-Peer Digital Preservation System 2007-01-08 01:00:33 Hewlett-Packard

In peer-to-peer systems, attrition attacks include both traditional, network-level denial of service attacks as well as application-level attacks in which malign peers conspire to waste loyal peers' resources. This paper describes several defenses for the LOCKSS peer-to-peer digital preservation system that help ensure that application level attrition attacks even from powerful adversaries are less effective than simple network-level attacks, and that network-level attacks must be intense, widespread, and prolonged to impair the system.

DDoS-Resilient Scheduling to Counter Application Layer Attacks Under Imperfect Detection 2007-01-07 01:00:31 Hewlett-Packard

Countering Distributed Denial of Service (DDoS) attacks is becoming ever more challenging with the vast resources and techniques increasingly available to attackers. This paper considers sophisticated attacks that are protocol-compliant, non-intrusive, and utilize legitimate application-layer requests to overwhelm system resources. The authors characterize application layer resource attacks as either request flooding, asymmetric, or repeated one-shot, on the basis of the application workload parameters that they exploit. To protect servers from these attacks, they propose a counter-mechanism that consists of suspicion assignment mechanism and a DDoS-resilient scheduler, DDoS Shield.

ACACIA: A Certificate-Based Access-Controlled Internet Architecture 2006-12-09 01:00:18 Alcatel-Lucent

The current Internet architecture supports open connectivity, i.e., any host can send traffic to any other host. This has resulted in a number of security problems such as Distributed Denial-of-Service (DDoS) attacks, worms etc. This paper proposes ACACIA - A Certificate-based Access-Controlled Internet Architecture. In ACACIA, a source must first obtain an access certificate in order to send packets to a destination. This access request is routed through a separate DDoS-resilient Access Control Infrastructure (ACI). The ACI is based on Distributed Hash Table-based servers that isolates attack requests using a load-adaptive replication strategy.

Plugging the Leaks: Proven Approaches for Securing Corporate Email 2006-08-28 13:07:22 Proofpoint

What's at stake with messaging security? Everything from jobs to a company's reputation—the very livelihood of the organization and its ability to compete.

Besides the obvious business need to safeguard proprietary information from competitors, news organizations, financial institutions and the general public, there are serious penalties for disclosure of certain types of private, sensitive and confidential information.

Companies need to control and filter outbound messages to mitigate the risk of this confidential information leaking into public view. How can IT managers address this challenge?

Read this paper from Proofpoint to learn:

Why organizations need to monitor all outbound protocols, including email, webmail, URL filtering and FTP.

Five initial best practices for managing content in and out of the enterprise.

The impact violations of compliance regulations can have on your organization.

Email Security Doesn't need to be a gamble 2006-08-09 01:00:11 CipherTrust

Email security doesn't have to be a gamble CipherTrust provides a consolidated messaging security appliance which enables organisations to eliminate spam, viruses, malware and other email forms of identify fraud. Consolidation enables: - simplified administration - freed resource - enhanced security - increased administrator and user productivity - reduced costs - increased user trust Download our FREE white paper ..

Stopping Zombies, Botnets, and Other Email-borne Threats 2006-12-01 Sophos

Hijacked computers, or zombies, hide inside networks where they send spam, steal company secrets, and enable other serious crimes. This paper discusses how the threat has evolved, explains how zombie networks, or botnets, are created and highlights how even organizations with reliable gateway and endpoint protection are vulnerable.

The SMART Way to Secure Messaging for Microsoft Exchange Environments 2006-09-25 16:48:58 Sunbelt Software

This Sunbelt Software white paper highlights the many challenges associated with defending Microsoft Exchange 2000/2003 environments against viruses, spyware, spam, phishing e-mails, and other threats. It introduces the award-winning Sunbelt Messaging Ninja™ and its Suspicious Mail Attachment Removal Technology™ (SMART), which provides policy-based filtering that can outsmart even the most sophisticated attackers. Download the paper to learn more about Ninja, the third-generation, all-in-one messaging security solution that offers enterprise-grade protection at a price point small and medium-sized businesses (SMBs) can afford.

Distributed Denial of Service (DDoS) Mitigation Services Based on Cisco Systems Clean Pipes - Protection, Profits, and Productivity 2006-10-06 01:00:15 Cisco Systems

Successful Distributed Denial of Service (DDoS) attacks resulted in reported losses in the millions of dollars in 2005 alone. A number of service providers have reacted to the needs of their customers and currently offer automated, network-based, DDoS services that employ Cisco Systems Clean Pipes solution. These services have proven to be profitable almost from their inception. However, service providers have also realized a number of supplemental gains in operational savings, bandwidth conservation, and service differentiation that have transformed DDoS mitigation services from tangential to strategic. This paper, based on interviews with a number of services providers now offering DDoS services based on the Clean Pipes solution, describes not only their service successes, but also the ways they utilize Clean Pipes.

CARE: Enhancing Denial-of-Service Resilience in Mobile Ad Hoc Networks 2006-07-28 Virginia Tech

This paper proposes an attack-resilient routing architecture, called Cross-layer Active RE-routing (CARE), for Mobile Ad hoc NETworks (MANETs). Different from existing solutions, CARE does not focus on a particular type of attack, but instead takes a fundamentally general approach - it achieves resilience against a wide range of routing disruption Denial-of-Service (DoS) attacks by treating them and "Dysfunctional" network events in the same way. Here, dysfunctional network events denote link and routing failures caused by link contention or node mobility. CARE is a cross-layer scheme that detects attacks at the transport layer but responds to them at the network layer.

Tags: Mobile - Wireless Communications

The Pathogenesis Of Dark Traffic 2006-07-10 02:15:14 Hotwire

The aim of the paper is to educate IT directors and managers on the nature of Denial of Service (DoS) and Directory Harvesting Attacks (DHA), which compose the Dark Traffic email threat faced by businesses. The paper also looks at what solutions are available to these increasingly significant threats.

Jump to [1] 2 3 4 5 6

Title	Date Added	Company
Attrition Defenses for a Peer-to-Peer Digital Preservation System	2007-01-08 01:00:33	Hewlett-Packard
In peer-to-peer systems, attrition attacks include both traditional, network-level denial of service attacks as well as application-level attacks in which malign peers conspire to waste loyal peers' resources. This paper describes several defenses for the LOCKSS peer-to-peer digital preservation system that help ensure that application level attrition attacks even from powerful adversaries are less effective than simple network-level attacks, and that network-level attacks must be intense, widespread, and prolonged to impair the system.
DDoS-Resilient Scheduling to Counter Application Layer Attacks Under Imperfect Detection	2007-01-07 01:00:31	Hewlett-Packard
Countering Distributed Denial of Service (DDoS) attacks is becoming ever more challenging with the vast resources and techniques increasingly available to attackers. This paper considers sophisticated attacks that are protocol-compliant, non-intrusive, and utilize legitimate application-layer requests to overwhelm system resources. The authors characterize application layer resource attacks as either request flooding, asymmetric, or repeated one-shot, on the basis of the application workload parameters that they exploit. To protect servers from these attacks, they propose a counter-mechanism that consists of suspicion assignment mechanism and a DDoS-resilient scheduler, DDoS Shield.
ACACIA: A Certificate-Based Access-Controlled Internet Architecture	2006-12-09 01:00:18	Alcatel-Lucent
The current Internet architecture supports open connectivity, i.e., any host can send traffic to any other host. This has resulted in a number of security problems such as Distributed Denial-of-Service (DDoS) attacks, worms etc. This paper proposes ACACIA - A Certificate-based Access-Controlled Internet Architecture. In ACACIA, a source must first obtain an access certificate in order to send packets to a destination. This access request is routed through a separate DDoS-resilient Access Control Infrastructure (ACI). The ACI is based on Distributed Hash Table-based servers that isolates attack requests using a load-adaptive replication strategy.
Plugging the Leaks: Proven Approaches for Securing Corporate Email	2006-08-28 13:07:22	Proofpoint
What's at stake with messaging security? Everything from jobs to a company's reputation—the very livelihood of the organization and its ability to compete. Besides the obvious business need to safeguard proprietary information from competitors, news organizations, financial institutions and the general public, there are serious penalties for disclosure of certain types of private, sensitive and confidential information. Companies need to control and filter outbound messages to mitigate the risk of this confidential information leaking into public view. How can IT managers address this challenge? Read this paper from Proofpoint to learn: Why organizations need to monitor all outbound protocols, including email, webmail, URL filtering and FTP. Five initial best practices for managing content in and out of the enterprise. The impact violations of compliance regulations can have on your organization.
Email Security Doesn't need to be a gamble	2006-08-09 01:00:11	CipherTrust
Email security doesn't have to be a gamble CipherTrust provides a consolidated messaging security appliance which enables organisations to eliminate spam, viruses, malware and other email forms of identify fraud. Consolidation enables: - simplified administration - freed resource - enhanced security - increased administrator and user productivity - reduced costs - increased user trust Download our FREE white paper ..
Stopping Zombies, Botnets, and Other Email-borne Threats	2006-12-01	Sophos
Hijacked computers, or zombies, hide inside networks where they send spam, steal company secrets, and enable other serious crimes. This paper discusses how the threat has evolved, explains how zombie networks, or botnets, are created and highlights how even organizations with reliable gateway and endpoint protection are vulnerable.
The SMART Way to Secure Messaging for Microsoft Exchange Environments	2006-09-25 16:48:58	Sunbelt Software
This Sunbelt Software white paper highlights the many challenges associated with defending Microsoft Exchange 2000/2003 environments against viruses, spyware, spam, phishing e-mails, and other threats. It introduces the award-winning Sunbelt Messaging Ninja™ and its Suspicious Mail Attachment Removal Technology™ (SMART), which provides policy-based filtering that can outsmart even the most sophisticated attackers. Download the paper to learn more about Ninja, the third-generation, all-in-one messaging security solution that offers enterprise-grade protection at a price point small and medium-sized businesses (SMBs) can afford.
Distributed Denial of Service (DDoS) Mitigation Services Based on Cisco Systems Clean Pipes - Protection, Profits, and Productivity	2006-10-06 01:00:15	Cisco Systems
Successful Distributed Denial of Service (DDoS) attacks resulted in reported losses in the millions of dollars in 2005 alone. A number of service providers have reacted to the needs of their customers and currently offer automated, network-based, DDoS services that employ Cisco Systems Clean Pipes solution. These services have proven to be profitable almost from their inception. However, service providers have also realized a number of supplemental gains in operational savings, bandwidth conservation, and service differentiation that have transformed DDoS mitigation services from tangential to strategic. This paper, based on interviews with a number of services providers now offering DDoS services based on the Clean Pipes solution, describes not only their service successes, but also the ways they utilize Clean Pipes.
CARE: Enhancing Denial-of-Service Resilience in Mobile Ad Hoc Networks	2006-07-28	Virginia Tech
This paper proposes an attack-resilient routing architecture, called Cross-layer Active RE-routing (CARE), for Mobile Ad hoc NETworks (MANETs). Different from existing solutions, CARE does not focus on a particular type of attack, but instead takes a fundamentally general approach - it achieves resilience against a wide range of routing disruption Denial-of-Service (DoS) attacks by treating them and "Dysfunctional" network events in the same way. Here, dysfunctional network events denote link and routing failures caused by link contention or node mobility. CARE is a cross-layer scheme that detects attacks at the transport layer but responds to them at the network layer. Tags: Mobile - Wireless Communications
The Pathogenesis Of Dark Traffic	2006-07-10 02:15:14	Hotwire
The aim of the paper is to educate IT directors and managers on the nature of Denial of Service (DoS) and Directory Harvesting Attacks (DHA), which compose the Dark Traffic email threat faced by businesses. The paper also looks at what solutions are available to these increasingly significant threats.

Security

Featured Whitepapers

Member Login

Webcast: Maximizing Data Protection with Disk-Based Backup

HP Simply StorageWorks D2D Backup System

Industry Watch: Healthcare