Journal ArticleDOI
Inside the Slammer worm
David Moore,Vern Paxson,Stefan Savage,Colleen Shannon,Stuart Staniford,Nicholas Weaver +5 more
- Vol. 1, Iss: 4, pp 33-39
TLDR
The Slammer worm spread so quickly that human response was ineffective, and why was it so effective and what new challenges do this new breed of worm pose?Abstract:
The Slammer worm spread so quickly that human response was ineffective. In January 2003, it packed a benign payload, but its disruptive capacity was surprising. Why was it so effective and what new challenges do this new breed of worm pose?.read more
Citations
More filters
Practical memory safety for C
TL;DR: Three compiler-based tools for analysing and instrumenting unmodified source code to automatically generate binaries hardened against memory errors are developed: BBC and WIT to harden user-space C programs, and BGI toharden and to isolate Microsoft Windows kernel extensions.
Posted Content
Optimal Filtering for DDoS Attacks
TL;DR: This paper considers a single router, typically the gateway of the victim, with a limited number of available filters, and forms the problem as an optimization problem and solves it optimally using dynamic programming, study the properties of the optimal allocation, experiment with a simple heuristic and evaluate the solutions for a range of realistic attack-scenarios.
Journal ArticleDOI
Understanding Increasing Traffic Levels for Internet Abuse Detection
TL;DR: In this paper, the authors present an approach for detecting Internet misuse at the edges of the Internet, but certain classes of misuse can only be effectively prevented within the network core by processing summaries of network traffic rather than individual packets.
Dissertation
Modeling and simulations of worms and mitigation techniques
TL;DR: An analytical model for the worm spread of TCP worms in the MANETs environment that accounts for payload-size, bandwidth-sharing, radio range, nodal density and several other parameters specific for MANET topologies is developed.
Proceedings ArticleDOI
Network security model for analyzing network-based control systems under denial of service attacks
TL;DR: Experimental results indicate that the event-driven controller is more robust than the time-driven one under attacks, and two queueing models to simulate the stochastic process of packet transmission under DoS attacks are proposed.
References
More filters
Proceedings Article
Inferring internet denial-of-service activity
TL;DR: This article presents a new technique, called “backscatter analysis,” that provides a conservative estimate of worldwide denial-of-service activity, and believes it is the first to provide quantitative estimates of Internet-wide denial- of- service activity.
Proceedings Article
How to Own the Internet in Your Spare Time
TL;DR: This work develops and evaluates several new, highly virulent possible techniques: hit-list scanning, permutation scanning, self-coordinating scanning, and use of Internet-sized hit-lists (which creates a flash worm).
Proceedings ArticleDOI
Code-Red: a case study on the spread and victims of an internet worm
TL;DR: The experience of the Code-Red worm demonstrates that wide-spread vulnerabilities in Internet hosts can be exploited quickly and dramatically, and that techniques other than host patching are required to mitigate Internet worms.
Proceedings ArticleDOI
Internet quarantine: requirements for containing self-propagating code
TL;DR: The design space of worm containment systems is described using three key parameters - reaction time, containment strategy and deployment scenario - and the lower bounds that any such system must exceed to be useful today are demonstrated.
Journal ArticleDOI
Inferring Internet denial-of-service activity
TL;DR: In this paper, the authors present a new technique, called backscatter analysis, that provides a conservative estimate of worldwide denial-of-service activity, and quantitatively assess the number, duration and focus of attacks, and qualitatively characterize their behavior.