packets service attacks
The ICMP Traceback Message
White Paper It is often useful to learn the path that packets take through the Internet, especially when dealing with certain denial-of-service attacks. It is often useful to learn the path that packets take through the Internet. [03 Jul 2008]
Denial of Service FAQ
White Paper These attacks also send “specially crafted” packets that crash remote software/services running on a machine. This is generally accomplished by sending a high volume of useless packets such as SYN or PING. [03 Jul 2008]
Malicious Packet Dropping: How It Might Impact the TCP Performance and How We Can Detect It
White Paper We demonstrate that attackers can choose different dropping patterns to degrade TCP service to different levels, and selectively dropping a very small number of packets can result in a severe damage to TCP performance. [03 Jul 2008]
Implementing Pushback: Router-Based Defense Against DDoS Attacks
White Paper Functionality is added to each router to detect and preferentially drop packets that probably belong to an attack. Upstream routers are also notified to drop such packets (hence the term Pushback)in order that the router’s resources be used to... [03 Jul 2008]
A Source Address Filtering Firewall to Defend Against Denial of Service Attacks
White Paper This paper proposes a firewall mechanism that tries to filter off the malicious packets when the protected network is under DoS attacks. When the attackers generate large volume of useless packets to deplete the available resources of the targets... [30 Jun 2008]
A Dynamic Stateful Multicast Firewall
White Paper This paper propose and demonstrate a simple yet powerful multicast firewall algorithm that can, under most conditions, automatically distinguish unsolicited multicast packets and drop them to protect the network from denial-of-service attacks. [25 Jun 2008]
Security experts criticise Phorm
News Also, by sending sufficient crafted packets to the [Phorm] web server, attackers would get more bang for their buck, and the net effect would be [that] the server would not resolve anyone to the ISP. Security experts have criticised targeted-ad... [18 Apr 2008]
Detecting Distributed Denial-of-Service Attacks by Analyzing TCP SYN Packets Statistically
White Paper One of the problems in detecting SYN Flood traffic is that server nodes or firewalls cannot distinguish the SYN packets of normal TCP connections from those of SYN Flood attack. Distributed denial-of-service attacks on public servers have recently... [14 Jan 2008]
Client-Controlled Slow TCP and Denial of Service
White Paper This paper investigates how a TCP client can extend the duration of its connection with a server only by setting the pace of sending back acknowledgement packets. Denials of Service attacks are becoming an increasing threat to the information... [14 Jan 2008]
Protecting Mobile Devices From TCP Flooding Attacks
White Paper In wireline networks, this problem can partially be solved by opening dedicated pinholes in the network firewalls to allow unsolicited packets to pass. In cellular and wireless networks, however, opening dedicated pinholes can lead to new forms of... [20 Dec 2007]
NEMESI: Using a TCP Finite State Machine Against TCP SYN Flooding Attacks
White Paper It introduces a new approach to prevent such attacks based on passive monitoring of the frequency of TCP SYN packets and peak intervals, with respect to other packets, in combination with a dynamically adapted connection drop time. [19 Dec 2007]
Victim-Assisted Mitigation Technique for TCP-Based Reflector DDoS Attacks
White Paper The main idea of the SNF scheme is to restrict the choice of the initial sequence numbers of SYN packets to certain pattern, such that corresponding SYN-ACK packets can be validated at the ISP's perimeter. [19 Dec 2007]
Network Support for IP Traceback
White Paper The work discussed in this paper is motivated by the increased frequency and sophistication of denial-of-service attacks and by the difficulty in tracing packets with incorrect, or "Spoofed," source addresses. [06 Nov 2007]
Linux Security Cookbook: Testing Login Passwords (John the Ripper)
White Paper By examining the protocol information and payload of each packet (or a sequence of packets) and applying its pattern-matching rules, Snort can identify the telltale fingerprints of attempted buffer overflows, denial of service attacks, port scans... [25 Oct 2007]
On Link Layer Denial of Service in Data Wireless LANs
White Paper Such attacks allow a set of adversary nodes disseminated over an area to prevent communication, partition an ad hoc network, or force packets to be routed over adversary chosen paths. The paper shows that, on existing WLAN, an adversary can... [23 Aug 2007]
Keep updated for stories matching packets service attacks via RSS
