Journal ArticleDOI
Inside the Slammer worm
David Moore,Vern Paxson,Stefan Savage,Colleen Shannon,Stuart Staniford,Nicholas Weaver +5 more
- Vol. 1, Iss: 4, pp 33-39
TLDR
The Slammer worm spread so quickly that human response was ineffective, and why was it so effective and what new challenges do this new breed of worm pose?Abstract:
The Slammer worm spread so quickly that human response was ineffective. In January 2003, it packed a benign payload, but its disruptive capacity was surprising. Why was it so effective and what new challenges do this new breed of worm pose?.read more
Citations
More filters
Journal ArticleDOI
CIPA: A collaborative intrusion prevention architecture for programmable network and SDN
TL;DR: A novel collaborative intrusion prevention architecture, CIPA, aiming at confronting such coordinated intrusion behavior, is proposed, deployed as a virtual network of an artificial neural net over the substrate of networks.
Journal ArticleDOI
Flow-based anomaly intrusion detection system using two neural network stages
TL;DR: An intrusion detection system using two neural network stages based on flow-data is proposed for detecting and classifying attacks in network traffic, and the designed models are promising in terms of accuracy and computational time.
Journal ArticleDOI
Does trusted computing remedy computer security problems
R. Oppliger,R. Rytz +1 more
TL;DR: It is argued that although trusted computing has some merits, it neither provides a complete remedy nor is it likely to prevail in the PC mass market.
Journal ArticleDOI
Resilient self-organizing overlay networks for security update delivery
TL;DR: Experimental measurements of a prototype implementation of Revere gathered using a large-scale-oriented approach suggest that Revere can deliver security updates at the required scale, speed and resiliency for a reasonable cost.
DissertationDOI
Anomaly Detection in SCADA Systems - A Network Based Approach
TL;DR: This work provides the first comprehensive analysis of real-world SCADA traffic, and proposes PeriodAnalyzer, an approach that uses deep packet inspection to automatically identify the different messages and the frequency at which they are issued and can be used to detect data injection and Denial of Service attacks.
References
More filters
Proceedings Article
Inferring internet denial-of-service activity
TL;DR: This article presents a new technique, called “backscatter analysis,” that provides a conservative estimate of worldwide denial-of-service activity, and believes it is the first to provide quantitative estimates of Internet-wide denial- of- service activity.
Proceedings Article
How to Own the Internet in Your Spare Time
TL;DR: This work develops and evaluates several new, highly virulent possible techniques: hit-list scanning, permutation scanning, self-coordinating scanning, and use of Internet-sized hit-lists (which creates a flash worm).
Proceedings ArticleDOI
Code-Red: a case study on the spread and victims of an internet worm
TL;DR: The experience of the Code-Red worm demonstrates that wide-spread vulnerabilities in Internet hosts can be exploited quickly and dramatically, and that techniques other than host patching are required to mitigate Internet worms.
Proceedings ArticleDOI
Internet quarantine: requirements for containing self-propagating code
TL;DR: The design space of worm containment systems is described using three key parameters - reaction time, containment strategy and deployment scenario - and the lower bounds that any such system must exceed to be useful today are demonstrated.
Journal ArticleDOI
Inferring Internet denial-of-service activity
TL;DR: In this paper, the authors present a new technique, called backscatter analysis, that provides a conservative estimate of worldwide denial-of-service activity, and quantitatively assess the number, duration and focus of attacks, and qualitatively characterize their behavior.