DocumentCode :
2262033
Title :
A Quick-Response Real-Time Stepping Stone Detection Scheme
Author :
Li, Ping ; Zhou, Wanlei ; Yu, Yanli
Author_Institution :
Sch. Of Inf. Technol., Deakin Univ., Burwood, VIC, Australia
fYear :
2010
fDate :
1-3 Sept. 2010
Firstpage :
677
Lastpage :
682
Abstract :
Stepping stone attacks are often used by network intruders to hide their identities. To detect and block stepping stone attacks, a stepping stone detection scheme should be able to correctly identify a stepping-stone in a very short time and in real-time. However, the majority of past research has failed to indicate how long or how many packets it takes for the monitor to detect a stepping stone. In this paper, we propose a novel quick-response real-time stepping stones detection scheme which is based on packet delay properties. Our experiments show that it can identify a stepping stone within 20 seconds which includes false positives and false negatives of less than 3%.
Keywords :
computer network security; network intruder; packet delay; quick response real time stepping stone detection scheme;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
High Performance Computing and Communications (HPCC), 2010 12th IEEE International Conference on
Conference_Location :
Melbourne, VIC
Print_ISBN :
978-1-4244-8335-8
Electronic_ISBN :
978-0-7695-4214-0
Type :
conf
DOI :
10.1109/HPCC.2010.17
Filename :
5581423
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2262033
بازگشت