{"title":"用于缓解分布式拒绝服务攻击的分布式检测和响应","authors":"D. Grant","doi":"10.1109/ICOIN.2018.8343168","DOIUrl":null,"url":null,"abstract":"Distributed Denial of Service (DDoS) attacks continue to escalate in size and impact despite efforts to control and limit exposures that enable them to be successful. This proposal takes a novel approach to the DDoS problem, by combining separate existing information security technologies in a collaborative system. Devices used to gather evidence on attack methods and provide for reverse engineering malware are ‘honeypots’. These devices provide researchers with critically important information for analysis and eventually allow for development of detection and response mechanisms to malicious attacks. Intrusion prevention systems (IPS) can take action to alert administrators to potential misuse of computing assets, and in many cases execute predetermined response to malicious activity. This work tests operational communication between distributed honeypots and IPS devices to detect and actively respond to denial of service attacks at near machine speed.","PeriodicalId":228799,"journal":{"name":"2018 International Conference on Information Networking (ICOIN)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Distributed detection and response for the mitigation of distributed denial of service attacks\",\"authors\":\"D. Grant\",\"doi\":\"10.1109/ICOIN.2018.8343168\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Distributed Denial of Service (DDoS) attacks continue to escalate in size and impact despite efforts to control and limit exposures that enable them to be successful. This proposal takes a novel approach to the DDoS problem, by combining separate existing information security technologies in a collaborative system. Devices used to gather evidence on attack methods and provide for reverse engineering malware are ‘honeypots’. These devices provide researchers with critically important information for analysis and eventually allow for development of detection and response mechanisms to malicious attacks. Intrusion prevention systems (IPS) can take action to alert administrators to potential misuse of computing assets, and in many cases execute predetermined response to malicious activity. This work tests operational communication between distributed honeypots and IPS devices to detect and actively respond to denial of service attacks at near machine speed.\",\"PeriodicalId\":228799,\"journal\":{\"name\":\"2018 International Conference on Information Networking (ICOIN)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1900-01-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 International Conference on Information Networking (ICOIN)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICOIN.2018.8343168\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 International Conference on Information Networking (ICOIN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICOIN.2018.8343168","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Distributed detection and response for the mitigation of distributed denial of service attacks
Distributed Denial of Service (DDoS) attacks continue to escalate in size and impact despite efforts to control and limit exposures that enable them to be successful. This proposal takes a novel approach to the DDoS problem, by combining separate existing information security technologies in a collaborative system. Devices used to gather evidence on attack methods and provide for reverse engineering malware are ‘honeypots’. These devices provide researchers with critically important information for analysis and eventually allow for development of detection and response mechanisms to malicious attacks. Intrusion prevention systems (IPS) can take action to alert administrators to potential misuse of computing assets, and in many cases execute predetermined response to malicious activity. This work tests operational communication between distributed honeypots and IPS devices to detect and actively respond to denial of service attacks at near machine speed.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
