• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>IEEE Conference on Communications and Network Security >Scan prediction and reconnaissance mitigation through commodity graphics cards
【24h】

Scan prediction and reconnaissance mitigation through commodity graphics cards

机译:通过商品显卡扫描预测和侦察缓解

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

In order to protect information and communications technology (ICT) systems against remote attacks and exploitation, insight into which systems are targeted is necessary as soon as possible. Given the lack of advance information, current network-based attack detection and mitigation techniques, such as virus scanners or intrusion prevention systems, are typically aimed at countering the delivery and exploitation. This paper presents a novel approach capable of detecting threats while they scan a local network for potential targets and even before an intrusion attack has been made. This allows the defender to single out scan traffic and selectively deny access to an attacker performing reconnaissance while maintaining the availability to other users. We implement a proof-of-concept on commodity graphics cards, and demonstrate fast prediction of scanner behavior on a /16 network telescope.
机译:为了保护信息和通信技术(ICT)系统免受远程攻击和利用,必须尽快洞悉针对哪些系统。鉴于缺乏先进的信息,当前基于网络的攻击检测和缓解技术(例如病毒扫描程序或入侵防御系统)通常旨在抵制分发和利用。本文提出了一种新颖的方法,能够在威胁扫描本地网络以寻找潜在目标时,甚至在进行入侵攻击之前,都能够检测到威胁。这使防御者可以选择扫描流量,并有选择地拒绝对执行侦察的攻击者的访问,同时保持对其他用户的可用性。我们在商品图形卡上实施了概念验证,并在/ 16网络望远镜上演示了对扫描仪行为的快速预测。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号