| Publisher | Institute of Electrical and Electronics Engineers | ||
|---|---|---|---|
| Format | 115.9KB PDF | Date added | 13 Oct 2004 |
| Topics | Firewalls, Network Security, Security Tools | ||
| Downloads | 8 | ||
Denial-of-Service (DoS) attacks exploit a very fundamental fact that the computation and bandwidth resources of their targets are limited. When the attackers generate large volume of useless packets to deplete the available resources of the targets, the targets will be unable to accommodate the legitimate service requests. This paper proposes a firewall mechanism that tries to filter off the malicious packets when the protected network is under DoS attacks. The idea is to judge the legitimacy status of each incoming packet from its source address in a statistical way. The scheme utilizes the traffic intensity difference between the legitimate users and the malicious attackers to make this determination in real time. The proposed firewall mechanism can be used to protect both wired and wireless networks.
Did you find this white paper useful?
4 out of 8 users found this white paper useful
Related white papers
Messagelabs - IT Security Threats of Today and Tommorrow Webcast Supporting Doc
This document supports th silicon.com webcast which discusses some of the security threats to IT systems that organisations have to face on a daily basis - and what do about...
Intel® Centrino® 2 with vPro™ Technology and Intel® Core™2 Processor with vPro™ Technology
This whitepaper explores how the latest notebook and desktop PCs with Intel® vPro™ technology build on proven capabilities to enable greater proactive security, enhanced maintenance, and improved remote management both...
Secure Desktop On-Demand Webcast
The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...
Understanding Web application security challenges
Business has grown increasingly independent upon web applications and they are becoming more difficult to secure. This paper explains what you can do to protect your organization and improve Web...
PCI DSS Compliance in the UNIX/Linux Datacenter Environment
This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard (PCI DSS) by limiting and tracking authorization to execute commands and programs that access servers and...
IOS Tips and Tricks
There are a number of things you can do with Cisco's IOS to make your life easier. This white paper presents some ways that IOS commands can help streamline your...
Computer Security Manufacturer Deploys Worldwide Intrusion Prevention to Stop Attackers in Their Tracks
The client is a global computer security powerhouse. The challenge was to detect and prevent network attacks on global network, including known, unknown, and DoS attacks, as well as attacks...
