Další formáty:
BibTeX
LaTeX
RIS
@inproceedings{829829, author = {Vykopal, Jan and Plesník, Tomáš and Minařík, Pavel}, address = {Los Alamitos, CA, USA}, booktitle = {Proceedings of International Conference on Future Networks (ICFN 2009)}, keywords = {NetFlow; dictionary attack; decision tree; SSH}, language = {eng}, location = {Los Alamitos, CA, USA}, isbn = {978-0-7695-3567-8}, pages = {23-27}, publisher = {IEEE Computer Society}, title = {Network-based Dictionary Attack Detection}, year = {2009} }
TY - JOUR ID - 829829 AU - Vykopal, Jan - Plesník, Tomáš - Minařík, Pavel PY - 2009 TI - Network-based Dictionary Attack Detection PB - IEEE Computer Society CY - Los Alamitos, CA, USA SN - 9780769535678 KW - NetFlow KW - dictionary attack KW - decision tree KW - SSH N2 - This paper describes the novel network-based approach to a dictionary attack detection with the ability to recognize successful attack. We analyzed SSH break-in attempts at a flow level and determined a dictionary attack pattern. This pattern was verified and compared to common SSH traffic to prevent false positives. The SSH dictionary attack pattern was implemented using decision tree technique. The evaluation was performed in a large high-speed university network with promising results. ER -
VYKOPAL, Jan, Tomáš PLESNÍK a Pavel MINAŘÍK. Network-based Dictionary Attack Detection. In \textit{Proceedings of International Conference on Future Networks (ICFN 2009)}. Los Alamitos, CA, USA: IEEE Computer Society, 2009, s.~23-27. ISBN~978-0-7695-3567-8.
|