Title :
A distributed active response architecture for preventing SSH dictionary attacks
Author :
Thames, J. Lane ; Abler, Randal ; Keeling, David
Author_Institution :
Georgia Inst. of Technol., Atlanta
Abstract :
Dictionary attacks against Internet servers that provide the secure shell (SSH) service for secure, remote login is very common. The dictionary attack is an attempt to gain unauthorized access to a server by continuously guessing username and password pairs using sophisticated brute force techniques. Solutions exist that can detect and prevent this attack for a local host. However, a technique that distributes the detection and prevention information to a server´s trusted neighbors can provide a gain in security by way of preemptive protection. This paper describes a distributed active response architecture that provides proactive, preemptive protection against the SSH dictionary attack.
Keywords :
Internet; security of data; Internet servers; SSH dictionary attacks; distributed active response architecture; gain unauthorized access; remote login; secure shell service; server trusted neighbors; sophisticated brute force; Authentication; Biological information theory; Computer architecture; Dictionaries; Hardware; Humans; Information security; Protection; Web and internet services; Web server;
Conference_Titel :
Southeastcon, 2008. IEEE
Conference_Location :
Huntsville, AL
Print_ISBN :
978-1-4244-1883-1
Electronic_ISBN :
978-1-4244-1884-8
DOI :
10.1109/SECON.2008.4494264
