Member Login

E-mail:    Password:  




 TitleDate AddedCompany
whitepaper Rule-Based Defense Mechanism Against Distributed Denial-of-Service Attacks2008-07-04 Chungnam National University
  Since the number of damage cases resulting from Distributed Denial-of-Service (DDoS) attacks has recently been increasing, the need for agile detection and appropriate response mechanisms against DDoS attacks has also been increasing. The latest DDoS attack has the property of swift propagation speed and various attack patterns. There is therefore a need to create a lighter mechanism to detect and respond to such new and transformed types of attacks with greater speed. This paper proposes a rule-based defense mechanism against DDoS attacks. It is expected to improve the availability, confidentiality and integrity of service by blocking the propagation of DDoS attacks earlier.

Tags: Intrusion - Tampering		   
whitepaper Denial of Service Attacks and Challenges in Broadband Wireless Networks2008-07-01 Brunel University
  Broadband wireless networks are providing internet and related services to end users. The three most important broadband wireless technologies are IEEE 802.11, IEEE 802.16, and Wireless Mesh Network (WMN). Security attacks and vulnerabilities vary amongst these broadband wireless networks because of differences in topologies, network operations and physical setups. Amongst the various security risks, Denial of Service (DoS) attack is the most severe security threat, as DoS can compromise the availability and integrity of broadband wireless network. This paper presents DoS attack issues in broadband wireless networks, along with possible defenses and future directions.

Tags: Intrusion - Tampering, Network Technologies		   
whitepaper Defending Against Distributed Denial-of-Service Attacks With Weight-Fair Router Throttling2008-07-01 Washington University in St. Louis
  A high profile internet server is always a target of denial-of-service attacks. This paper proposes a novel technique for protecting an internet server from distributed denial-of-service attacks. The defense mechanism is based on a distributed algorithm that performs weight-fair throttling at the upstream routers. The throttling is weight-fair because the traffics destined for the server are controlled increased or decreased) by the leaky-buckets at the routers based on the number of users connected, directly or through other routers, to each router. To the best of the knowledge, this is the first weight-fair technique for saving an internet server from denial-of-service attacks.

Tags: Intrusion - Tampering		   
whitepaper How to Block NDR Spam2008-06-03 GFi Software
  Spam generates an enormous amount of traffic that is both time-consuming to handle and resource intensive. Apart from that, a large number of organizations have been victims of NDR spam that has an effect similar to a Distributed Denial of Service on the email system. This paper provides a technical explanation of NDR Spam and recommends solutions that can prevent or limit exposure to this kind of unsolicited email.

Tags: Intrusion - Tampering, Intrusion - Tampering		   
whitepaper A Hybrid Approach to Efficient Detection of Distributed Denial-of-Service Attacks2008-06-01 Colorado State University
  An automated system for detecting network traffic anomalies caused by Denial-of-Service attacks is proposed. The system is designed as a two-stage architecture incorporating the change-point detection methodology, used for early attack identification, and further spectral profiling, used for confirmation of the attack presence. The proposed system is shown to be robust and capable of achieving excellent results in terms of first, the speed of detection, and more importantly, the balance between the number of correct detections and the number of false positives. This is accomplished through extensive performance evaluation done using real-world traffic traces containing malicious activity captured at a regional Internet Service Provider (ISP).

Tags: Intrusion - Tampering		   
whitepaper SprintSecure Message Protection Fact Sheet2008-05-28 Sprint
  SprintSecure(sm) Message Protection keeps businesses safe from potential security risks due to the explosive growth of email. Read this solution brief to see how to keep your email assets safe and protected against viruses, worms, denial-of-service attacks, and spam.

Tags: Intrusion - Tampering, Security Administration, Internet and Web, Intrusion - Tampering		   
whitepaper Cisco Security Advisory: Cisco IOS Secure Shell Denial of Service Vulnerabilities2008-05-21 Cisco Systems
  The Secure Shell server (SSH) implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device. The IOS SSH server is an optional service that is disabled by default, but its use is highly recommended as a security best practice for management of Cisco IOS devices. SSH can be configured as part of the AutoSecure feature in the initial configuration of IOS devices, AutoSecure run after initial configuration, or manually. Devices that are not configured to accept SSH connections are not affected by these vulnerabilities.

Tags: Intrusion - Tampering		   
whitepaper Attack Prevention Technology White Paper2008-04-16
  This paper introduces the common network attacks and the corresponding prevention measures, and describes the features and network applications of the H3C firewall attack prevention technology. It includes the attack prevention function allows a firewall to detect network attacks including Denial of Service (DoS), scanning and snooping, and malformed packet attacks. The attack prevention measures include blacklist filtering, packet attack characteristics identification, abnormal traffic detection, and intrusion detection statistics.

Tags: Intrusion - Tampering, Intrusion - Tampering		   
whitepaper Detecting and Mitigating Denial-of-Service Attacks on Voice Over IP Networks2008-04-11 Columbia University
  Voice over IP (VoIP) is more susceptible to Denial of Service attacks than traditional data traffic, due to the former's low tolerance to delay and jitter. This paper describes the design of their VoIP Vulnerability Assessment Tool (VVAT) with which they demonstrate vulnerabilities to DoS attacks inherent in many of the popular VoIP applications available today. In their threat model they assume an adversary who is not a network administrator, nor has direct control of the channel and key VoIP elements. The aim is to degrade the victim's QoS without giving away the presence by making the attack look like normal network degradation. Even black-boxed applications like Skype that use proprietary protocols show poor performance under specially crafted DoS attacks to its media stream.

Tags: Security Administration, Intrusion - Tampering		   
whitepaper Major Online Stock Broker Turns to Verizon Business to Help Stop a Potentially Devastating DDoS Attack2008-04-01
  Distributed Denial-of-Service (DDoS) attacks are often the weapon of choice for would-be criminals who target Internet sites. And, as a major online stock broker found out, the threat of a DDoS attack can be the perfect tool for extortion. For some time, a major online stock broker had been experiencing small DDoS attacks on a somewhat regular basis, but the disruptions to that point had been minimal. In an ominous development, the attacks suddenly became far more sophisticated in design and scale. Soon a notice arrived, demanding that a substantial monetary payment be made in order to stop the crippling attacks. Verizon Business immediately implemented its DoS Defense product to address the online broker's problems.

Tags: Security Administration, Intrusion - Tampering