You are here: silicon.com > Resources > White Papers > Networking and Communications > Network Technologies > TCP - IP

TCP - IP White Papers

Detecting Distributed Denial-of-Service Attacks by Analyzing TCP SYN Packets Statistically

Tags:
tcp - ip

Overview Distributed denial-of-service attacks on public servers have recently become more serious. More are SYN Flood attacks, since the malicious attackers can easily exploit the TCP specification to generate traffic making public servers unavailable. To assure that network services will not be interrupted, the author needs faster and more accurate defense mechanisms against malicious traffic, especially SYN floods. One of the problems in detecting SYN Flood traffic is that server nodes or firewalls cannot distinguish the SYN packets of normal TCP connections from those of SYN Flood attack. Moreover, since the rate of normal network traffic may vary, one cannot use an explicit threshold of SYN arrival rates to detect SYN Flood traffic.

Further White Paper Details
Publisher	Osaka University	File Format	PDF
Date Published	November 2004	Downloads	1
Format	White Papers
Topics	TCP - IP, Network Security, Denial of Service

Did you find this white paper useful? 2 out of 4 users found this white paper useful

Anthony & Sylvan Pools Takes the Plunge with VoIP

Publisher:
Shoretel

A Taxonomy of the Linux Network Stack

Publisher:
Oracle

Tags:
tcp - ip

Linux Journal: The Hosting Service Provider for Superior IP Performance

Publisher:
Verio

Tags:
tcp - ip

Sprint IPVoice Connect Fact Sheet

Publisher:
Sprint

Design, Implementation and Evaluation of a QoS-Aware Transport Protocol

Publisher:
University of New South Wales

Tags:
quality of service

SCO denial-of-service attack intensifies

The attack, which SCO identified as a SYN flood, tries to open a connection with a server across the internet by sending a SYN packet to the computer. The statistics suggest, however, that the attack is more a brute-force tactic of inundating a...

Channel:
Law & Policy

Cisco battles Juniper with worms

A new element in the updated IOS is improved protection against denial of service attacks, which flood networks with millions of packets causing routers and servers to freeze under the pressure. Platon said the company is working on a product that...

Channel:
Security Strategy

Veritas flaw enables corporate attacks

Malicious code to exploit a vulnerability in Veritas Software's Backup Exec Remote Agent for Windows is publicly available, the US Computer Emergency Readiness Team (US-Cert) said in an alert on Thursday.

Channel:
Security Strategy
Tags:
flaw,
veritas

Cracked: The Great Firewall of China

Richard Clayton of the University of Cambridge computer laboratory explained: "The machines in China allow data packets in and out but send a burst of resets to shut connections if they spot particular keywords.

The biggest VoIP security threats - and how to stop them

Users immediately detect a drop-off in service quality and ultimately their IP handsets stop working. Good network practice, such as changing login defaults and using firewalls, can help mitigate the impact of these attacks.

Malicious code getting harder to spot

Referring to security techniques based on signatures to detect malicious websites, he said: "They use obfuscation to avoid simple signatures. Another alternative is Exploit Prevention Labs' LinkScanner, which monitors traffic going into a PC and...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

TCP - IP White Papers

Detecting Distributed Denial-of-Service Attacks by Analyzing TCP SYN Packets Statistically

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific