| Publisher | Illinois State University | ||
|---|---|---|---|
| Format | 31.0KB PDF | Date added | 11 Aug 2001 |
| Topics | Digital Signatures, Security Tools, Intrusion Detection Systems | ||
| Downloads | 87 | ||
This paper reports a vulnerability to network signature-based IDS which has been tested using Snort and is called "Squealing". This vulnerability has significant implications since it can easily be generalized to any IDS. The vulnerability of signature-based IDS to high false positive rates has been well-documented but one goes further to show (at a high level) how packets can be crafted to match attack signatures such that a alarms on a target IDS can be conditioned or disabled and then exploited. This is the first academic treatment of this vulnerability that has already been reported to the CERT Coordination Center and the National Infrastructure Protection Center. Independently, other tools based on "Squealing" are poised to appear that, while validating our ideas, also gives cause for concern.
Did you find this white paper useful?
12 out of 23 users found this white paper useful
Related white papers
Reaching the Tipping Point for Two-Factor Authentication
Two-factor authentication is becoming more common in the world's largest companies. Smaller companies are also looking at it - and asking questions: What's its appeal? Is there a solid return on...
Digital Signatures for Contract Management
As organizations move to implement custom and off-the-shelf contract management applications, many of these systems fail to provide appropriate electronic approval and signing features. This creates a major gap in...
Digital Signatures for Human Resource Uses
It is not unusual for Human Resource (HR) specialists to find themselves buried under tons of paperwork requiring signatures. These professionals know that today's process for reviewing, approving, and archiving...
Using the CoSign Control Panel
The Graphical Signature Management application enables one to view all graphical signatures and create a new graphical signature. This graphical signature can be attached to all Microsoft Word, Excel, InfoPath,...
Smart Enterprise Single Sign-on
What is needed is an Enterprise Single Sign-On (E-SSO) solution that allows end-users to securely authenticate once and then access their desktop and their enterprise applications. And that is able...
Trusted Computing: Trusted Platform Management and Key Recovery
The computer industry offers a variety of PCs and desktop boards equipped with a Trusted Computing Module (TPM), a dedicated microchip enabled for security capabilities. Specifications for the TPM have...
Universal Signing With OmniSign
This paper describes how to use the CoSign OmniSign application to manage all digital signature related operations in a PDF document, and sign any printable data from any application. The...
