dos tcp
RSS dos tcpSort by: Relevance | Date
A Gateway-Based Defense System for Distributed DoS Attacks in High-Speed Networks
White Paper The paper aims at protecting TCP friendly traffic, which occupies the main body of the Internet traffic. These flows are marked as TCP flows, and use spoofed source identifiers to hide their identities. [11 Jul 2008]
Fuzzy Intrusion Detection System
White Paper The key idea is to use soft computing for detecting intrusive behaviors and Denial of Service attacks (DoS). The basic intent of a DoS attack either overwhelms the resources allocated by a networked device to a particular service in order to... [09 Jul 2008]
Combating W32.Novarg.A@mm/MyDoom
White Paper W32.Novarg.A@mm/MyDoom is a rapidly spreading mass-mailing worm that sets up a backdoor into the system by opening TCP ports 3127 thru 3198, and will perform a DoS. View this webcast to gain detailed information as well as mitigating strategies to... [03 Jul 2008]
Evaluating Application-Aware Firewall Performance
White Paper The rise of application-layer DoS attacks, the popularity of Network Address Translation (NAT), and the need for advanced network security capabilities have spawned the development of application-aware firewalls. [30 Jun 2008]
Denial of Service Tuning for Cisco IOS Software Firewall and Intrusion Prevention System
White Paper UDP sessions without acknowledgement are likely indicative of DoS activity, or attempts to connect between two hosts where one of the hosts has become unresponsive. Cisco IOS Stateful Packet Inspection maintains counters of the number of "Half-open... [12 Jun 2008]
Tuning Cisco IOS Firewall Denial-of-Service Protection
White Paper Prior to Cisco IOS Software Release 12.4(11)T, Cisco IOS Firewall provided Denial-of-Service (DoS) attack protection as a default when either Classic or Zone-Based Policy Firewall was applied. Cisco IOS Software Release 12.4(11)T modified the... [12 Jun 2008]
Cisco Security Advisory: Denial of Service Vulnerability in Cisco Wide Area Application Services (WAAS) Software
White Paper The Cisco Wide Area Application Services (WAAS) software contains a Denial of Service (DoS) vulnerability that may cause some devices that run WAAS software (WAE appliance and NM-WAE 502 module) to stop processing all types of traffic, including... [03 Apr 2008]
Client-Controlled Slow TCP and Denial of Service
White Paper This kind of trust has been exploited in some DoS attacks, such as SYN-flooding attack. TCP is the dominant network transport protocol. This paper investigates how a TCP client can extend the duration of its connection with a server only by setting... [15 Jan 2008]
Low-Rate TCP-Targeted Denial of Service Attacks
White Paper Using a combination of analytical modeling, simulations, and Internet experiments, it shows that maliciously chosen low-rate DoS traffic patterns that exploit TCP's retransmission time-out mechanism can throttle TCP flows to a small fraction of... [15 Jan 2008]
Vanguard: A New Detection Scheme for a Class of TCP-Targeted Denial-of-Service Attacks
White Paper A few low-rates, TCP-targeted Denial-of-Service (DoS) attacks have been recently proposed, including the Shrew attack, Reduction of Quality (RoQ) attack, and Pulsing DoS (PDoS) attack. All of them use periodic attack pulses to throttle TCP flows. [09 Jan 2008]
Performance Analysis of TCP/AQM Under Denial-of-Service Attacks
White Paper This paper investigates how the performance of TCP flows is affected by denial-of-service (DoS) attacks under the Drop Tail and various AQM schemes. In particular, it considers two types of DoS attacks - the traditional flooding-based DoS (FDDoS... [09 Jan 2008]
A Poisoning-Resilient TCP Stack
White Paper This paper explores ways for upgrading TCP endpoints into viable DoS-resilient protocol entities, capable of mitigating large-scale poisoning attacks. The problem of large-scale TCP poisoning is treated: an attacker, who is able to monitor TCP... [09 Jan 2008]
Protecting Mobile Devices From TCP Flooding Attacks
White Paper In cellular and wireless networks, however, opening dedicated pinholes can lead to new forms of denial of service (DoS) attacks that are not seen in wireline networks. Network firewalls have played a crucial role in reducing unwanted traffic by... [21 Dec 2007]
Victim-Assisted Mitigation Technique for TCP-Based Reflector DDoS Attacks
White Paper The proposed concept is utilized within a simple, yet effective scheme designed for mitigating TCP-based reflector DoS attacks. This paper develops the concept of victim-assistance for Denial of Service (DoS) mitigation. [20 Dec 2007]
NEMESI: Using a TCP Finite State Machine Against TCP SYN Flooding Attacks
White Paper These include the Denial of Service (DoS) attacks, viruses, Trojans, spam mails and worm attacks. This paper focuses on experiments with TCP SYN flooding attacks. It introduces a new approach to prevent such attacks based on passive monitoring of... [20 Dec 2007]
