Denial of Service - IT Library : ZDNet Asia

White Papers

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Close the Zero-Hour Gap: Protection from Emerging Virus Threats 2006-03-01 Proofpoint

To exploit the "zero hour gap," or the time it takes to identify attacking malware and write signatures that detect and neutralize it, virus writers are using several new distribution strategies -- so-called "short-span" and "serial-variant" attacks. Sometimes they use a combination of both.

This white paper from Proofpoint delves into the challenges presented by the zero-hour span discusses:

Why the need for signature-independent outbreak protection is more important than ever.

The latest advances in network traffic analysis and recurrent pattern detection.

How Proofpoint Zero-Hour Anti-Virus technology protects enterprises against new viral outbreaks within minutes of their introduction.

Cisco - Strategies to Protect Against Distributed Denial of Service (DDoS) Attacks 2006-11-01 01:00:29 Cisco Systems

In order to facilitate Distributed Denial of Service (DDoS), the attackers need to have several hundred to several thousand compromised hosts. The hosts are usually Linux and SUN computers; however, the tools can be ported to other platforms as well. The process of compromising a host and installing the tool is automated. Because an automated process is used, attackers can compromise and install the tool on a single host in under 5 seconds. This white paper contains information to help the reader understand how DDoS attacks are orchestrated, recognize programs used to facilitate DDoS attacks, apply measures to prevent the attacks, gather forensic information if a person suspects an attack, and learn more about host security.

NetFlow Layer 2 and Security Monitoring Exports 2006-12-14 01:00:24 Cisco Systems

This paper contains information about and instructions for configuring NetFlow Layer 2 and Security Monitoring Exports. Configuring NetFlow Layer 2 and Security Monitoring Exports improves the ability to detect and analyze network threats such as Denial of Service attacks (DoS) by increasing the number of fields that netFlow can capture the values from. NetFlow is a Cisco IOS application that provides statistics on packets flowing through the router. It is emerging as a primary network accounting and security technology.

White Paper - Modern Network Security: The Migration to Deep Packet Inspection 2006-02-24 01:01:25

The past few years has seen a radical evolution in the nature and requirements of network security. There are many factors contributing to these changes, the most important of which is the shift in focus from so-called 'network-level' threats, such as connection-oriented intrusions and Denial of Service (DoS) attacks, to dynamic, content-based threats such as Viruses, Worms, Trojans, Spyware and Phishing that can spread quickly and indiscriminately, and require sophisticated levels of intelligence to detect. Where attacks like Smurf, Fraggle and the Ping of Death were the key threats in years past, now attacks such as "Microsoft IIS 5.0 printer ISAPI extension buffer overflow vulnerability" and "Unicode directory traversal" are more prevalent, albeit much less imaginatively named.

Identity Driven Management and Endpoint Integrity: A Technical Overview 2006-02-01 Hewlett-Packard (HP)

This white paper from ProCurve Networking by HP defines the networking function known as "endpoint integrity," or the process by which all endpoints attempting to connect to the network are examined in order to prohibit unsafe or otherwise non-compliant endpoints from gaining access. It goes on to describe how client-based and network-based endpoint integrity options work, and highlights the key differences between the three types of network-based endpoint integrity products on the market today, including:

Proprietary solutions

De facto standard solutions

Standard solutions

Finally, the paper explains how ProCurve's Identity Driven Manager (IDM) provides a richer, more robust, and future-proof implementation of endpoint integrity.

Pushing Security to the Perimeter: Trusted Computing Technology Adapts to Changing Enterprise Needs 2006-08-03 01:00:11 Hewlett-Packard

Security concerns, identity theft and regulatory compliance requirements are converging to drive the enterprise's need for strong identity and access management (IAM) solutions. These solutions can include enterprise single sign-on (SSO), legacy authorization, user provisioning, advanced authentication hardware and software, and other endpoint security solutions. This IDC white paper reviews the growing need for network-based security as a fundamental component in the identity and access management (IAM) market and profiles ProCurve Networking by HP's Identity Driven Manager 2.0 with Adaptive EDGE Architecture to illustrate a cost-effective IAM solution that can help enterprises address their security concerns while increasing the value of their networks.

Enterprise Content Security: Best Practices for Protecting Private and Confidential Data 2006-08-28 13:07:01 Proofpoint

In this one-hour web seminar replay, Gartner research vice president Rich Mogull and Proofpoint senior vice president Sandra Vaughan discuss the best practices, processes and technologies required to secure your enterprise's most valuable information.

View this webinar from Proofpoint to learn:

Best Practices for identifying and classifying your organization's sensitive data.

How to secure sensitive data that resides in many different systems inside your enterprise.

New technologies that can monitor, detect and block sensitive data across multiple messaging protocols (including email, HTTP and FTP) to prevent misuse of your most valuable enterprise information.

How and why leading enterprises are leveraging these technologies to stop information leaks and improve compliance with regulations.

How Proofpoint's approach to content monitoring and filtering lets you leverage the same infrastructure for both outbound and inbound message protection.

Cisco Security Advisory: IOS Stack Group Bidding Protocol Crafted Packet DoS 2006-05-04 04:00:01 Cisco Systems

The Cisco IOS Stack Group Bidding Protocol (SGBP) feature in certain versions of Cisco IOS software is vulnerable to a remotely-exploitable denial of service condition. Devices that do not support or have not enabled the SGBP protocol are not affected by this vulnerability. Cisco has made free software available to address this vulnerability for affected customers. There are workarounds available to mitigate the effects of the vulnerability.

Susceptibility of Wireless Devices to Denial of Service Attacks 2006-11-10 01:00:17 NetModule

DoS is a real threat for wireless technologies and could become a show-stopper in some critical applications. In future standards more attention must be paid to DoS issues. Security should be firmly defined in standards and as little as possible should be left to the interpretation of the developer in order to ensure interoperability and thus wide adoption. There are countermeasures, none of which are a panacea but all of which help minimise and mitigate the problem. While DoS will never be impossible the effort to mount an attack can be made a serious obstacle for an attacker. This paper presents a selection of DoS attacks on WLAN and ZigBee, discusses the implications and possible countermeasures.

Avaya G250 and G350 Media Gateway Security Features Overview 2006-08-30 01:00:13 Avaya

The Avaya G250 and G350 Media Gateway Security Features Overview CID 115343 supersede the earlier Avaya G350 Media Gateways Security Features Overview CID: 102411. The Avaya G250 and G350 Media Gateways provide a variety of features which can be used to enhance security. The goal of this white paper is to summarize the general product documentation and focus on those features.

Jump to 1 2 3 [4] 5 6 7 8

Title	Date Added	Company
Close the Zero-Hour Gap: Protection from Emerging Virus Threats	2006-03-01	Proofpoint
To exploit the "zero hour gap," or the time it takes to identify attacking malware and write signatures that detect and neutralize it, virus writers are using several new distribution strategies -- so-called "short-span" and "serial-variant" attacks. Sometimes they use a combination of both. This white paper from Proofpoint delves into the challenges presented by the zero-hour span discusses: Why the need for signature-independent outbreak protection is more important than ever. The latest advances in network traffic analysis and recurrent pattern detection. How Proofpoint Zero-Hour Anti-Virus technology protects enterprises against new viral outbreaks within minutes of their introduction.
Cisco - Strategies to Protect Against Distributed Denial of Service (DDoS) Attacks	2006-11-01 01:00:29	Cisco Systems
In order to facilitate Distributed Denial of Service (DDoS), the attackers need to have several hundred to several thousand compromised hosts. The hosts are usually Linux and SUN computers; however, the tools can be ported to other platforms as well. The process of compromising a host and installing the tool is automated. Because an automated process is used, attackers can compromise and install the tool on a single host in under 5 seconds. This white paper contains information to help the reader understand how DDoS attacks are orchestrated, recognize programs used to facilitate DDoS attacks, apply measures to prevent the attacks, gather forensic information if a person suspects an attack, and learn more about host security.
NetFlow Layer 2 and Security Monitoring Exports	2006-12-14 01:00:24	Cisco Systems
This paper contains information about and instructions for configuring NetFlow Layer 2 and Security Monitoring Exports. Configuring NetFlow Layer 2 and Security Monitoring Exports improves the ability to detect and analyze network threats such as Denial of Service attacks (DoS) by increasing the number of fields that netFlow can capture the values from. NetFlow is a Cisco IOS application that provides statistics on packets flowing through the router. It is emerging as a primary network accounting and security technology.
White Paper - Modern Network Security: The Migration to Deep Packet Inspection	2006-02-24 01:01:25
The past few years has seen a radical evolution in the nature and requirements of network security. There are many factors contributing to these changes, the most important of which is the shift in focus from so-called 'network-level' threats, such as connection-oriented intrusions and Denial of Service (DoS) attacks, to dynamic, content-based threats such as Viruses, Worms, Trojans, Spyware and Phishing that can spread quickly and indiscriminately, and require sophisticated levels of intelligence to detect. Where attacks like Smurf, Fraggle and the Ping of Death were the key threats in years past, now attacks such as "Microsoft IIS 5.0 printer ISAPI extension buffer overflow vulnerability" and "Unicode directory traversal" are more prevalent, albeit much less imaginatively named.
Identity Driven Management and Endpoint Integrity: A Technical Overview	2006-02-01	Hewlett-Packard (HP)
This white paper from ProCurve Networking by HP defines the networking function known as "endpoint integrity," or the process by which all endpoints attempting to connect to the network are examined in order to prohibit unsafe or otherwise non-compliant endpoints from gaining access. It goes on to describe how client-based and network-based endpoint integrity options work, and highlights the key differences between the three types of network-based endpoint integrity products on the market today, including: Proprietary solutions De facto standard solutions Standard solutions Finally, the paper explains how ProCurve's Identity Driven Manager (IDM) provides a richer, more robust, and future-proof implementation of endpoint integrity.
Pushing Security to the Perimeter: Trusted Computing Technology Adapts to Changing Enterprise Needs	2006-08-03 01:00:11	Hewlett-Packard
Security concerns, identity theft and regulatory compliance requirements are converging to drive the enterprise's need for strong identity and access management (IAM) solutions. These solutions can include enterprise single sign-on (SSO), legacy authorization, user provisioning, advanced authentication hardware and software, and other endpoint security solutions. This IDC white paper reviews the growing need for network-based security as a fundamental component in the identity and access management (IAM) market and profiles ProCurve Networking by HP's Identity Driven Manager 2.0 with Adaptive EDGE Architecture to illustrate a cost-effective IAM solution that can help enterprises address their security concerns while increasing the value of their networks.
Enterprise Content Security: Best Practices for Protecting Private and Confidential Data	2006-08-28 13:07:01	Proofpoint
In this one-hour web seminar replay, Gartner research vice president Rich Mogull and Proofpoint senior vice president Sandra Vaughan discuss the best practices, processes and technologies required to secure your enterprise's most valuable information. View this webinar from Proofpoint to learn: Best Practices for identifying and classifying your organization's sensitive data. How to secure sensitive data that resides in many different systems inside your enterprise. New technologies that can monitor, detect and block sensitive data across multiple messaging protocols (including email, HTTP and FTP) to prevent misuse of your most valuable enterprise information. How and why leading enterprises are leveraging these technologies to stop information leaks and improve compliance with regulations. How Proofpoint's approach to content monitoring and filtering lets you leverage the same infrastructure for both outbound and inbound message protection.
Cisco Security Advisory: IOS Stack Group Bidding Protocol Crafted Packet DoS	2006-05-04 04:00:01	Cisco Systems
The Cisco IOS Stack Group Bidding Protocol (SGBP) feature in certain versions of Cisco IOS software is vulnerable to a remotely-exploitable denial of service condition. Devices that do not support or have not enabled the SGBP protocol are not affected by this vulnerability. Cisco has made free software available to address this vulnerability for affected customers. There are workarounds available to mitigate the effects of the vulnerability.
Susceptibility of Wireless Devices to Denial of Service Attacks	2006-11-10 01:00:17	NetModule
DoS is a real threat for wireless technologies and could become a show-stopper in some critical applications. In future standards more attention must be paid to DoS issues. Security should be firmly defined in standards and as little as possible should be left to the interpretation of the developer in order to ensure interoperability and thus wide adoption. There are countermeasures, none of which are a panacea but all of which help minimise and mitigate the problem. While DoS will never be impossible the effort to mount an attack can be made a serious obstacle for an attacker. This paper presents a selection of DoS attacks on WLAN and ZigBee, discusses the implications and possible countermeasures.
Avaya G250 and G350 Media Gateway Security Features Overview	2006-08-30 01:00:13	Avaya
The Avaya G250 and G350 Media Gateway Security Features Overview CID 115343 supersede the earlier Avaya G350 Media Gateways Security Features Overview CID: 102411. The Avaya G250 and G350 Media Gateways provide a variety of features which can be used to enhance security. The goal of this white paper is to summarize the general product documentation and focus on those features.

Security

Featured Whitepapers

Member Login

Oracle Technology Solutions for Midsize Businesses

Industry Report: Financial Services