利用高级持续威胁技术开发、检测和预防用户帐户DoS的案例研究

2015 Fifteenth International Conference on Advances in ICT for Emerging Regions (ICTer) Pub Date : 2015-08-01 DOI:10.1109/ICTER.2015.7377687

K. Anushka, Chamantha, A. P. Karunaweera, P. R. Priyashantha, H. D. R. Wickramasinghe, W. A. V. M. G. Wijethunge

{"title":"利用高级持续威胁技术开发、检测和预防用户帐户DoS的案例研究","authors":"K. Anushka, Chamantha, A. P. Karunaweera, P. R. Priyashantha, H. D. R. Wickramasinghe, W. A. V. M. G. Wijethunge","doi":"10.1109/ICTER.2015.7377687","DOIUrl":null,"url":null,"abstract":"Security analysts implement various security mechanisms to protect systems from attackers. Even though these mechanisms try to secure systems, a talented attacker may use these same techniques to launch a sophisticated attack. This paper discuss about such an attack called as user account Denial of Service (DoS) where an attacker uses user account lockout features of the application to lockout all user accounts causing an enterprise wide DoS. The attack has being simulated usingastealthy attack mechanism called as Advanced Persistent Threats (APT) using a XMPP based botnet. Through the simulation, researchers discuss about the patterns associated with the attack which can be used to detect the attack in real time and how the attack can be prevented from the perspective of developers, system engineers and security analysts.","PeriodicalId":142561,"journal":{"name":"2015 Fifteenth International Conference on Advances in ICT for Emerging Regions (ICTer)","volume":"22 38","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Case study on exploitation, detection and prevention of user account DoS through Advanced Persistent Threats\",\"authors\":\"K. Anushka, Chamantha, A. P. Karunaweera, P. R. Priyashantha, H. D. R. Wickramasinghe, W. A. V. M. G. Wijethunge\",\"doi\":\"10.1109/ICTER.2015.7377687\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Security analysts implement various security mechanisms to protect systems from attackers. Even though these mechanisms try to secure systems, a talented attacker may use these same techniques to launch a sophisticated attack. This paper discuss about such an attack called as user account Denial of Service (DoS) where an attacker uses user account lockout features of the application to lockout all user accounts causing an enterprise wide DoS. The attack has being simulated usingastealthy attack mechanism called as Advanced Persistent Threats (APT) using a XMPP based botnet. Through the simulation, researchers discuss about the patterns associated with the attack which can be used to detect the attack in real time and how the attack can be prevented from the perspective of developers, system engineers and security analysts.\",\"PeriodicalId\":142561,\"journal\":{\"name\":\"2015 Fifteenth International Conference on Advances in ICT for Emerging Regions (ICTer)\",\"volume\":\"22 38\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-08-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 Fifteenth International Conference on Advances in ICT for Emerging Regions (ICTer)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICTER.2015.7377687\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 Fifteenth International Conference on Advances in ICT for Emerging Regions (ICTer)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICTER.2015.7377687","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

安全分析人员实现各种安全机制来保护系统免受攻击者的攻击。尽管这些机制试图保护系统，但高明的攻击者可能会使用这些相同的技术发动复杂的攻击。本文讨论了一种称为用户帐户拒绝服务(DoS)的攻击，攻击者使用应用程序的用户帐户锁定功能来锁定所有用户帐户，从而导致企业范围内的DoS。使用基于XMPP的僵尸网络，使用一种称为高级持续威胁(APT)的隐形攻击机制来模拟攻击。通过模拟，研究人员从开发人员、系统工程师和安全分析人员的角度讨论了与攻击相关的模式，这些模式可以用来实时检测攻击，以及如何防止攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Case study on exploitation, detection and prevention of user account DoS through Advanced Persistent Threats

Security analysts implement various security mechanisms to protect systems from attackers. Even though these mechanisms try to secure systems, a talented attacker may use these same techniques to launch a sophisticated attack. This paper discuss about such an attack called as user account Denial of Service (DoS) where an attacker uses user account lockout features of the application to lockout all user accounts causing an enterprise wide DoS. The attack has being simulated usingastealthy attack mechanism called as Advanced Persistent Threats (APT) using a XMPP based botnet. Through the simulation, researchers discuss about the patterns associated with the attack which can be used to detect the attack in real time and how the attack can be prevented from the perspective of developers, system engineers and security analysts.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2015 Fifteenth International Conference on Advances in ICT for Emerging Regions (ICTer)

自引率

0.00%

发文量