You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

Cisco Security Advisory: Cisco Secure Intrusion Detection System Signature Obfuscation Vulnerability

Overview Intrusion Detection Systems inspect network traffic for suspect or malicious packet formats, data payloads and traffic patterns. Intrusion detection systems typically implement obfuscation defense - ensuring that suspect packets cannot easily be disguised with UTF and/or hex encoding and bypass the Intrusion Detection systems. Recently, the CodeRed worm has targeted an unpatched vulnerability with many MicroSoft IIS systems and also highlighted a different encoding technique supported by MicroSoft IIS systems. This encoding technique known as %u can be used to circumvent intrusion detection systems, and has been made public by eEye security in their announcement.

Further White Paper Details
Publisher	Cisco	File Format	HTML
Date Published	September 2002	Downloads	7
Format	White Papers
Topics	Network Security

Did you find this white paper useful? 3 out of 7 users found this white paper useful

Balancing Security Against Productivity

Publisher:
Novell

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

U.S. Bancorp: Using VeriSign to Further Strengthen Its Network Security

Publisher:
VeriSign

NAC 2.0: A new model for a more secure future

Publisher:
Sophos

Anti-virus vendors failing users, claims CA chief

He said: "I suspect Simon may be trying to push CA's firewall/intrusion detection products on the back of the Nimda outbreak, as Nimda exploits a vulnerability in some versions of Microsoft IIS. He added: "IT managers need to see how many IIS...

Channel:
Security Strategy

Where is the mysterious internet code coming from?

Some people initially believed the data was sent by a worm that used the internet relay chat (IRC) system, a precursor to the popular instant messaging networks, to communicate. Security firm Network Associates classified the code as a worm, which...

Channel:
LANs
Tags:
mysterious,
iana,
lurhq,
iss

MSBlast worm outbreak 'infected 8 million PCs'

Typically, researchers try to estimate the size of a worm epidemic by collecting data from the records of network devices, such as firewalls and intrusion detection systems. New data from Microsoft suggests that at least eight million Windows...

Channel:
Security Strategy

Blaster dodges responsibility for US blackout

A US and Canadian task force investigating the August 2003 blackout that cut power to an estimated 50 million North Americans published its final report Monday, finding that institutional, human and computer failures - not the MSBlast worm - led...

Channel:
IT Pro

Globix offers protection against brute force net attacks

A range of companies have lost revenues in recent months as blackmailers and others have targeted their transactional web servers through denial of service (DoS) and distributed denial of service (DDoS) attacks.silicon.com last month revealed the...

Cracked: The Great Firewall of China

Even though this technique would only block communication between two particular points on the internet, the researchers calculated that a lone attacker using a single dial-up connection could still generate a "reasonably effective" denial of...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Network Security White Papers

Cisco Security Advisory: Cisco Secure Intrusion Detection System Signature Obfuscation Vulnerability

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific