Denial of Service - IT Library : ZDNet Asia

White Papers

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Analysis of the HIP Base Exchange Protocol 2006-04-20 05:38:11 Microsoft

The Host Identity Protocol (HIP) is an Internet security and multi-addressing mechanism specified by the IETF. HIP introduces a new layer between the transport and network layers of the TCP/IP stack that maps host identifiers to network locations, thus separating the two conflicting roles that IP addresses have in the current Internet. This paper analyzes the security and functionality of the HIP base Exchange, which is a classic key exchange protocol with some novel features for authentication and DoS protection. The base exchange is the most stable part of the HIP specification with multiple existing implementations. The paper points out several security issues in the current protocol and propose changes that are compatible with the goals of HIP.

Denial of Service and Distributed Denial of Service Protection 2005-08-04 03:00:01 3Com

To obtain full protection for DoS attacks, organizations typically need to purchase multiple proxy servers, network security devices, intrusion preventions systems, as well as software packages, updates, and expanded licenses as an organization grows. TippingPoint provides the answer in a single system. The TippingPoint IPS is an easy, affordable, and scalable solution, equipped with a broad range of protection mechanisms including, application anomaly filters, protocol anomaly filters, exploit signature filters, statistical traffic anomaly filters, threshold rate shaping filters, and advanced DoS/DDoS filters for detecting and blocking attacks.

Defending Government Network Infrastructure Against Distributed Denial of Service Attacks 2005-08-22 03:00:04 Cs3

Denial of Service (DoS) attacks are a class of network security threat whereby one or more attackers target network resources and servers to deny service to legitimate users. Increasingly, such attacks come from multiple, physically and network-topologically separated locations - a variation dubbed "Distributed" DoS attacks or DDoS attacks - making it harder to locate the attacker or thwart the attacker.

DDoS Threatens Financial Institutions - Get Prepared! 2006-05-04 05:35:40 ReymannGroup

Hackers that know how to create spam machines or spyware can generate DDoS attacks. In addition, a DDoS attack is generated with the help of many (potentially hundreds of thousands) unsuspecting zombie machines and it is not possible to stop the DDoS or protect your network with traditional security measures. Such attacks make it much easier for the perpetrator to cover his or her tracks since they are using the computers of innocent people. This paper provides an overview of the increased threat to your financial institution from Distributed Denial of Service (DDoS) attacks and how to defend your network from such attacks.

Best practices in intrusion prevention 2005-01-22 03:00:01 ZDNet

Detecting a network intrusion is great, but wouldn't your organization be better off if you could prevent such an intrusion from happening in the first place? That's where intrusion prevention systems come into play, and they're not just for large organizations anymore. Small and medium-sized businesses can also take advantage of this growing technology.

In this ZDNet audiocast, we'll discuss the advantages of intrusion prevention systems and how organizations can determine which system may be right for them.

This premium editorial content is underwritten by PCMall. The registration information you provide will be shared with our sponsor.

Best Practices in Intrusion Prevention 2005-01-25 13:46:14

Detecting a network intrusion is great, but wouldn't your organization be better off if you could prevent such an intrusion from happening in the first place? That's where intrusion prevention systems come into play, and they're not just for large organizations anymore. Small and medium-sized businesses can also take advantage of this growing technology.

In this ZDNet audiocast, we'll discuss the advantages of intrusion prevention systems and how organizations can determine which system may be right for them.

This premium editorial content is underwritten by PCMall. The registration information you provide will be shared with our sponsor.

Writing Secure Code: Best Practices (Part 2 of 2) ( Level 200) 20050107045609 Microsoft

Are you looking for effective strategies to defend against common security threats faced by application developers? In part two of this two-part series for experienced developers, you will continue learning more about established best practices for applying security principles throughout the development process. This webcast discusses common security threats faced by application developers, such as buffer overruns, cross-site scripting and denial of service attacks and how to effectively defend against these threats.

Dark Traffic E-mail Report 2005-05-24 11:26:56

Dark Traffic currently represents up to 70 percent of all inbound e-mail traffic. It is made up of spam, Directory Harvest Attacks (DHA), e-mail Denial of Service (DoS) attacks, malformed SMTP packets, invalid recipient addresses, and other requests and communications unrelated to the delivery of valid e-mail messages. With most solutions available today, it is difficult to identify and block these kinds of e-mail security threats. And the deeper these messages get into an organization�s e-mail network, the greater the cost and higher the security risk. The Dark Traffic Report defines and analyzes e-mail security information gathered through a combination of research interviews with enterprise IT and e-mail administrators, and taps of raw e-mail network data aggregated from traffic monitors positioned in top enterprises throughout the US.

Cisco Security Advisory: Cisco Telnet Denial of Service Vulnerability 2004-11-05 03:00:01 Cisco Systems

A specifically crafted Transmission Control Protocol (TCP) connection to a telnet or reverse telnet port of a Cisco device running Internetwork Operating System (IOS) may block further telnet, reverse telnet, Remote Shell (RSH), Secure Shell (SSH), and in some cases Hypertext Transport Protocol (HTTP) access to the Cisco device. Data Link Switching (DLSw) and protocol translation connections may also be affected. Telnet, reverse telnet, RSH, SSH, DLSw and protocol translation sessions established prior to exploitation are not affected.

A Study of Mass-Mailing Worms 2006-06-09 01:00:26 Association for Computing Machinery

Mass-mailing worms have made a significant impact on the Internet. These worms consume valuable network resources and can also be used as a vehicle for DDoS attacks. This paper analyzes network traffic traces collected from a college campus and presents an in-depth study on the effects of two mass-mailing worms, SoBig and MyDoom, on outgoing traffic. Rather than proposing a defense strategy, we focus on studying the fundamental behavior and characteristics of these worms. This analysis lends insight into the possibilities and challenges of automatically detecting, suppressing and stopping mass-mailing worm propagation in an enterprise network environment.

Jump to 1 2 3 4 5 [6] 7 8

Title	Date Added	Company
Analysis of the HIP Base Exchange Protocol	2006-04-20 05:38:11	Microsoft
The Host Identity Protocol (HIP) is an Internet security and multi-addressing mechanism specified by the IETF. HIP introduces a new layer between the transport and network layers of the TCP/IP stack that maps host identifiers to network locations, thus separating the two conflicting roles that IP addresses have in the current Internet. This paper analyzes the security and functionality of the HIP base Exchange, which is a classic key exchange protocol with some novel features for authentication and DoS protection. The base exchange is the most stable part of the HIP specification with multiple existing implementations. The paper points out several security issues in the current protocol and propose changes that are compatible with the goals of HIP.
Denial of Service and Distributed Denial of Service Protection	2005-08-04 03:00:01	3Com
To obtain full protection for DoS attacks, organizations typically need to purchase multiple proxy servers, network security devices, intrusion preventions systems, as well as software packages, updates, and expanded licenses as an organization grows. TippingPoint provides the answer in a single system. The TippingPoint IPS is an easy, affordable, and scalable solution, equipped with a broad range of protection mechanisms including, application anomaly filters, protocol anomaly filters, exploit signature filters, statistical traffic anomaly filters, threshold rate shaping filters, and advanced DoS/DDoS filters for detecting and blocking attacks.
Defending Government Network Infrastructure Against Distributed Denial of Service Attacks	2005-08-22 03:00:04	Cs3
Denial of Service (DoS) attacks are a class of network security threat whereby one or more attackers target network resources and servers to deny service to legitimate users. Increasingly, such attacks come from multiple, physically and network-topologically separated locations - a variation dubbed "Distributed" DoS attacks or DDoS attacks - making it harder to locate the attacker or thwart the attacker.
DDoS Threatens Financial Institutions - Get Prepared!	2006-05-04 05:35:40	ReymannGroup
Hackers that know how to create spam machines or spyware can generate DDoS attacks. In addition, a DDoS attack is generated with the help of many (potentially hundreds of thousands) unsuspecting zombie machines and it is not possible to stop the DDoS or protect your network with traditional security measures. Such attacks make it much easier for the perpetrator to cover his or her tracks since they are using the computers of innocent people. This paper provides an overview of the increased threat to your financial institution from Distributed Denial of Service (DDoS) attacks and how to defend your network from such attacks.
Best practices in intrusion prevention	2005-01-22 03:00:01	ZDNet
Detecting a network intrusion is great, but wouldn't your organization be better off if you could prevent such an intrusion from happening in the first place? That's where intrusion prevention systems come into play, and they're not just for large organizations anymore. Small and medium-sized businesses can also take advantage of this growing technology. In this ZDNet audiocast, we'll discuss the advantages of intrusion prevention systems and how organizations can determine which system may be right for them. This premium editorial content is underwritten by PCMall. The registration information you provide will be shared with our sponsor.
Best Practices in Intrusion Prevention	2005-01-25 13:46:14
Detecting a network intrusion is great, but wouldn't your organization be better off if you could prevent such an intrusion from happening in the first place? That's where intrusion prevention systems come into play, and they're not just for large organizations anymore. Small and medium-sized businesses can also take advantage of this growing technology. In this ZDNet audiocast, we'll discuss the advantages of intrusion prevention systems and how organizations can determine which system may be right for them. This premium editorial content is underwritten by PCMall. The registration information you provide will be shared with our sponsor.
Writing Secure Code: Best Practices (Part 2 of 2) ( Level 200)	20050107045609	Microsoft
Are you looking for effective strategies to defend against common security threats faced by application developers? In part two of this two-part series for experienced developers, you will continue learning more about established best practices for applying security principles throughout the development process. This webcast discusses common security threats faced by application developers, such as buffer overruns, cross-site scripting and denial of service attacks and how to effectively defend against these threats.
Dark Traffic E-mail Report	2005-05-24 11:26:56
Dark Traffic currently represents up to 70 percent of all inbound e-mail traffic. It is made up of spam, Directory Harvest Attacks (DHA), e-mail Denial of Service (DoS) attacks, malformed SMTP packets, invalid recipient addresses, and other requests and communications unrelated to the delivery of valid e-mail messages. With most solutions available today, it is difficult to identify and block these kinds of e-mail security threats. And the deeper these messages get into an organization�s e-mail network, the greater the cost and higher the security risk. The Dark Traffic Report defines and analyzes e-mail security information gathered through a combination of research interviews with enterprise IT and e-mail administrators, and taps of raw e-mail network data aggregated from traffic monitors positioned in top enterprises throughout the US.
Cisco Security Advisory: Cisco Telnet Denial of Service Vulnerability	2004-11-05 03:00:01	Cisco Systems
A specifically crafted Transmission Control Protocol (TCP) connection to a telnet or reverse telnet port of a Cisco device running Internetwork Operating System (IOS) may block further telnet, reverse telnet, Remote Shell (RSH), Secure Shell (SSH), and in some cases Hypertext Transport Protocol (HTTP) access to the Cisco device. Data Link Switching (DLSw) and protocol translation connections may also be affected. Telnet, reverse telnet, RSH, SSH, DLSw and protocol translation sessions established prior to exploitation are not affected.
A Study of Mass-Mailing Worms	2006-06-09 01:00:26	Association for Computing Machinery
Mass-mailing worms have made a significant impact on the Internet. These worms consume valuable network resources and can also be used as a vehicle for DDoS attacks. This paper analyzes network traffic traces collected from a college campus and presents an in-depth study on the effects of two mass-mailing worms, SoBig and MyDoom, on outgoing traffic. Rather than proposing a defense strategy, we focus on studying the fundamental behavior and characteristics of these worms. This analysis lends insight into the possibilities and challenges of automatically detecting, suppressing and stopping mass-mailing worm propagation in an enterprise network environment.

Security

Featured Whitepapers

Member Login

Oracle Technology Solutions for Midsize Businesses

Country Insight: China