Other formats:
BibTeX
LaTeX
RIS
@inproceedings{16323, author = {Drašar, Martin}, address = {Berlin}, booktitle = {Advances in Communication Networking}, keywords = {traffic classes; anomaly detection; network behavior analysis}, howpublished = {tištěná verze "print"}, language = {eng}, location = {Berlin}, isbn = {978-3-642-40551-8}, pages = {304-309}, publisher = {Springer Berlin Heidelberg}, title = {Protocol-independent Detection of Dictionary Attacks}, year = {2013} }
TY - JOUR ID - 16323 AU - Drašar, Martin PY - 2013 TI - Protocol-independent Detection of Dictionary Attacks PB - Springer Berlin Heidelberg CY - Berlin SN - 9783642405518 KW - traffic classes KW - anomaly detection KW - network behavior analysis N2 - Data throughput of current high-speed networks makes it prohibitively expensive to detect attacks using conventional means of deep packet inspection. The network behavior analysis seemed to be a solution, but it lacks in several aspects. The academic research focuses on sophisticated and advanced detection schemes that are, however, often problematic to deploy into the production. In this paper we try different approach and take inspiration from industry practice of using relatively simple but effective solutions. We introduce a model of malicious traffic based on practical experience that can be used to create simple and effective detection methods. This model was used to develop a successful proof-of-concept method for protocol-independent detection of dictionary attacks that is validated with empirical data in this paper. ER -
DRAŠAR, Martin. Protocol-independent Detection of Dictionary Attacks. In \textit{Advances in Communication Networking}. Berlin: Springer Berlin Heidelberg, 2013, p.~304-309. ISBN~978-3-642-40551-8.
|