You are here: silicon.com > Resources > White Papers > Networking and Communications > Network Technologies > TCP - IP

TCP - IP White Papers

Target-Based TCP Stream Reassembly

Tags:
tcp - ip

Overview In their landmark 1998 paper, "Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection," Thomas Ptacek and Timothy Newsham exposed some weaknesses in Intrusion Detection Systems (IDS). The authors revealed that intrusion detection systems cannot be effective and accurate because they do not necessarily process, or perhaps, even observe network traffic exactly as the destination host that receives the message does. This flaw exists in several layers of evaluation and processing of the packets including the IP, TCP, and application layers. As an example of the problem, consider traffic that has overlapping TCP segments that are sent to a given host.

Further White Paper Details
Publisher	Sourcefire	File Format	PDF
Date Published	August 2007	Downloads	1
Format	White Papers
Topics	TCP - IP

Did you find this white paper useful? 2 out of 5 users found this white paper useful

Anthony & Sylvan Pools Takes the Plunge with VoIP

Publisher:
Shoretel

Sprint IPVoice Connect Fact Sheet

Publisher:
Sprint

Integrated Trade Systems, Inc. Is Able to Track and Ensure Timely Purchase Order Delivery by Using Biscom Delivery Server to Send Files Securely

Publisher:
Biscom

Stewart Title Guaranty Company Reduces Courier and FTP Costs Using Biscom Delivery Server for Timely, Accurate, and Trackable Distribution of Software to Their Customers

Publisher:
Biscom

Tags:
tcp - ip

Hackers become the meat in a Cisco sandwich

The 4250 can inspect packets at gigabit speed which means quicker detection of any possible attackers and we believe it's the fastest of its kind," he said. Cisco has unveiled two new products as part of its intrusion detection systems (IDS...

Channel:
Security Strategy

Companies urged to patch Sendmail

Moreover, mail servers - also called mail transport agents (MTAs) - that aren't vulnerable will still forward the flaw-exploiting email message onto its destination. Because the vulnerability is contained in an email message, it will bypass...

Cisco battles Juniper with worms

It also added support for Internet Protocol version 6 (IPv6) for its firewall applications, and it added a feature that enables users to partition security in certain segments of their network. A new element in the updated IOS is improved...

Channel:
Security Strategy

Globix offers protection against brute force net attacks

A range of companies have lost revenues in recent months as blackmailers and others have targeted their transactional web servers through denial of service (DoS) and distributed denial of service (DDoS) attacks.silicon.com last month revealed the...

Cracked: The Great Firewall of China

By forging the source address of a packet containing a "sensitive" keyword, people could trigger the firewall to block access between source and destination addresses for up to an hour at a time. The Cambridge research group tested the firewall by...

The dos and don'ts of VoIP security

Additional tools that will help networks in case of any attack are intrusion detection and prevention systems, which scan for rogue incoming packets, and straightforward antivirus software which can help prevent any known threats from disrupting...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

TCP - IP White Papers

Target-Based TCP Stream Reassembly

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific