Other formats:
BibTeX
LaTeX
RIS
@inproceedings{946877,
author = {Vykopal, Jan},
address = {Berlin},
booktitle = {Advances in Computing and Communications},
doi = {http://dx.doi.org/10.1007/978-3-642-22714-1_69},
keywords = {netflow; taxonomy; prevalence; brute force attack; SSH},
howpublished = {tištěná verze "print"},
language = {eng},
location = {Berlin},
isbn = {978-3-642-22714-1},
pages = {666-675},
publisher = {Springer Berlin Heidelberg},
title = {A Flow-Level Taxonomy and Prevalence of Brute Force Attacks},
url = {http://dx.doi.org/10.1007/978-3-642-22714-1_69},
year = {2011}
}
TY - JOUR
ID - 946877
AU - Vykopal, Jan
PY - 2011
TI - A Flow-Level Taxonomy and Prevalence of Brute Force Attacks
PB - Springer Berlin Heidelberg
CY - Berlin
SN - 9783642227141
KW - netflow
KW - taxonomy
KW - prevalence
KW - brute force attack
KW - SSH
UR - http://dx.doi.org/10.1007/978-3-642-22714-1_69
N2 - Online brute force and dictionary attacks against network services and web applications are ubiquitous. We present their taxonomy from the perspective of network flows. This contributes to clear evaluation of detection methods and provides better understanding of the brute force attacks within the research community. Next, we utilize the formal definitions of attacks in a long-term analysis of SSH traffic from 10 gigabit university network. The results shows that flow-based intrusion detection may profit from traffic observation of the whole network, particularly it can allow more accurate detection of the majority of brute-force attacks in high-speed networks.
ER -
VYKOPAL, Jan. A Flow-Level Taxonomy and Prevalence of Brute Force Attacks. In \textit{Advances in Computing and Communications}. Berlin: Springer Berlin Heidelberg, 2011, p.~666-675. ISBN~978-3-642-22714-1. Available from: https://dx.doi.org/10.1007/978-3-642-22714-1\_{}69.
|
