• DocumentCode
    2262033
  • Title

    A Quick-Response Real-Time Stepping Stone Detection Scheme

  • Author

    Li, Ping ; Zhou, Wanlei ; Yu, Yanli

  • Author_Institution
    Sch. Of Inf. Technol., Deakin Univ., Burwood, VIC, Australia
  • fYear
    2010
  • fDate
    1-3 Sept. 2010
  • Firstpage
    677
  • Lastpage
    682
  • Abstract
    Stepping stone attacks are often used by network intruders to hide their identities. To detect and block stepping stone attacks, a stepping stone detection scheme should be able to correctly identify a stepping-stone in a very short time and in real-time. However, the majority of past research has failed to indicate how long or how many packets it takes for the monitor to detect a stepping stone. In this paper, we propose a novel quick-response real-time stepping stones detection scheme which is based on packet delay properties. Our experiments show that it can identify a stepping stone within 20 seconds which includes false positives and false negatives of less than 3%.
  • Keywords
    computer network security; network intruder; packet delay; quick response real time stepping stone detection scheme;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    High Performance Computing and Communications (HPCC), 2010 12th IEEE International Conference on
  • Conference_Location
    Melbourne, VIC
  • Print_ISBN
    978-1-4244-8335-8
  • Electronic_ISBN
    978-0-7695-4214-0
  • Type

    conf

  • DOI
    10.1109/HPCC.2010.17
  • Filename
    5581423
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2262033