Previous
The Case For TCP/IP Puzzles
White Papers Since the Morris worm was unleashed in 1988, Distributed Denial-Of-Service (DDoS) attacks via worms and viruses have continued to periodically disrupt the Internet. Client puzzles have been proposed as one mechanism for protecting protocols against...
[January 1, 1970, 0:59]
Defending Against TCP SYN Flooding Attacks Under Different Types Of IP Spoofing
White Papers TCP-based flooding attacks are a common form of Distributed Denial-of-Service (DDoS) attacks which abuse network resources and can bring about serious threats to the Internet. This paper propose a simple and efficient method to detect and defend...
[January 1, 1970, 0:59]
Target-Based TCP Stream Reassembly
White Papers In their landmark 1998 paper, "Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection," Thomas Ptacek and Timothy Newsham exposed some weaknesses in Intrusion Detection Systems (IDS).
[January 1, 1970, 0:59]
Fuzzy Intrusion Detection System
White Papers The key idea is to use soft computing for detecting intrusive behaviors and Denial of Service attacks (DoS). A framework for Intrusion Detection System (IDS) over TCP/IP network is proposed. The basic intent of a DoS attack either overwhelms the...
[July 11, 2008, 1:20]
Distributed Denial Of Service: Trin00, Tribe Flood Network, Tribe Flood Network 2000, And Stacheldraht - CIAC-2319
White Papers One type of attack on computer systems is known as a Denial of Service (DoS) attack. Denial of Service attack is designed to prevent legitimate users from using a system. Traditional Denial of Service attacks are done by exploiting a buffer...
[January 1, 1970, 0:59]
What Intrusion Detection Approaches Work Well If Only TCP/IP Packet Header Information Is Available?
White Papers Various services offered on the Internet are having problems of being unavailable for authorized users because of denial-of-service attacks. Some of these systems detect attacks according to full packet analysis, and some of them detect attacks by...
[January 1, 1970, 0:59]
Effects Of Mobility And Multihoming On Transport-Protocol Security
White Papers This paper explains how the multihoming and mobility features can be exploited for denial-of-service attacks, connection hijacking, and packet flooding. The Stream Control Transmission Protocol (SCTP) is a reliable message-based transport protocol...
[January 1, 1970, 0:59]
Combining Trust Management, Jini, IPv6, And Wireless Links: A Proposal For A Service Network Architecture For Ad Hoc Environments
White Papers The main security goals of the architecture include privacy against tracking of user location and service usage, integrity of signalling and authorization information, and at least rudimentary resistance against denial-of-service (DoS) attacks.
[January 1, 1970, 0:59]
Trickles: A Stateless Network Stack For Improved Scalability, Resilience, And Flexibility
White Papers Such state ties the connection to an endpoint, impedes transparent failover, permits denial-of-service attacks, and limits scalability. Called Trickles, this approach enables servers to scale well with increasing numbers of clients, consume fewer...
[July 11, 2008, 0:00]
PMDF And Firewalls
White Papers The messaging component of a firewall could include many or all of the following components: Spam protection, Protection against denial of service attacks. A firewall system generally controls what TCP/IP interactions are allowed between the...
[January 1, 1970, 0:59]
Microsoft Releases Critical Patches
News The vulnerabilities announced by Microsoft today can result in broad exposure to blended threats and worms, as well as denial-of-service attacks. ISS also found the flaw in TCP/IP networking. The updates include "critical" fixes to Windows' TCP/IP...
[April 13, 2005, 10:05]
Why Did MSBlast Fail To Take Down Microsoft?
News On 16 August, MSBlast began flooding Windowsupdate.com with a denial of service attack. For example, blocking TCP port 135 on routers will stop MSBlast but also other software that makes use of the DCOM service, such as Microsoft Exchange.
[August 28, 2003, 13:30]
Apple Patches Mac OS X Hole
News Apple's security update also fixes a buffer overflow vulnerability in a file system, plugs another vulnerability in Panther that could cause denial-of-service requests, and in general improves the security features of the affected OSes.
[December 23, 2003, 7:45]
Botnets Use Windows For Wicked Work
News Botnets are commonly used for denial-of-service (DoS) attacks, where a target computer is overloaded with data and falls over. The most exploited Windows ports found in the research were: port 445/TCP (used for file sharing); port 139/TCP (used to...
[March 16, 2005, 16:15]
Cisco Flags Unified Comms Flaw
News Networking giant Cisco has warned of a flaw in its Unified Communications Manager software that could allow a remote, unauthenticated user to cause a denial of service condition or execute arbitrary code.
[January 17, 2008, 11:52]
Cisco Wants To Patent TCP Fix
News For one, Watson said that Cisco's solution could actually increase the risk of denial of service attacks. The way the attack works is that a third device, or hacker, sends a packet that matches the source port and IP address of one of the devices...
[May 20, 2004, 8:50]
ICANN Heads For 'substantive' Meeting
News The growing number of denial-of-service and other attacks, coupled with VeriSign's unannounced decision to implement Site Finder, has "heightened an appreciation of what is stability for the Internet, what is the operation of the core function...
[October 28, 2003, 9:35]
MSN Messenger Flaw Opens Back Door To Hard Drive
News The third flaw allows attackers to instigate a denial-of-service attack against servers running Windows Media Services 4.1. The vulnerability exists because of the way Windows Media Station Service and Windows Media Monitor Service, components of...
[March 10, 2004, 7:20]
McAfee Forms Zombie-killer Alliance
News McAfee, a division of Network Associates, this week will announce a research and development partnership with three anti-DDoS (distributed-denial-of-service) vendors -- Arbor Networks, Asta Networks and Mazu Networks -- with the goal of developing...
[August 21, 2001, 10:03]
Windows Security Hole And Fix Explained
News The vulnerability can leave Windows users open to denial of service attacks. Another software patch has been released by the Microsoft camp, this time for a glitch in the TCP/IP stack implementation of Windows 95 and 98.
[September 9, 1999, 17:15]
