You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

A Framework for Malicious Workload Generation

Tags:
network security

Overview Malicious traffic from self-propagating worms and denial-of-service attacks constantly threatens the everyday operation of Internet systems. Defending networks from these threats demands appropriate tools to conduct comprehensive vulnerability assessments of networked systems. This paper describes MACE, a unique environment for recreating a wide range of malicious packet traffic in laboratory testbeds. MACE defines a model for flexible composition of malicious traffic that enables both known attacks (such as the Welchia worm) and new attack variants to be created. The paper implements this model in an extensible library for attack traffic specification and generation. To demonstrate the capability of MACE, the paper provides an analysis of stress tests conducted on a popular firewall and two popular network intrusion detection systems.

Further White Paper Details
Publisher	Association for Computing Machinery	File Format	PDF
Date Published	October 2004
Format	White Papers
Topics	Network Security, Security Tools, Intrusion Detection Systems

Did you find this white paper useful? 3 out of 5 users found this white paper useful

Balancing Security Against Productivity

Publisher:
Novell

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

U.S. Bancorp: Using VeriSign to Further Strengthen Its Network Security

Publisher:
VeriSign

NAC 2.0: A new model for a more secure future

Publisher:
Sophos

Cisco battles Juniper with worms

A new element in the updated IOS is improved protection against denial of service attacks, which flood networks with millions of packets causing routers and servers to freeze under the pressure. As worms and viruses such as SoBig, MSBlast and...

Channel:
Security Strategy

Blaster dodges responsibility for US blackout

Although several computer systems failed - in particular, a server and backup that ran software for keeping track of the status of a major power network - the Security Working Group leg of the Federal Energy Regulatory Commission (FERC)'s US...

Channel:
IT Pro

Two critical Windows vulnerabilities announced

The company defines its "critical" rating as: "A vulnerability whose exploitation could allow the propagation of an internet worm without user action. These newly announced vulnerabilities may be exploited remotely, which could allow denial-of...

Channel:
Security Strategy

Globix offers protection against brute force net attacks

A range of companies have lost revenues in recent months as blackmailers and others have targeted their transactional web servers through denial of service (DoS) and distributed denial of service (DDoS) attacks.silicon.com last month revealed the...

Malware ID scheme set to sort naming muddle

The US Computer Emergency Readiness Team is preparing to take the wraps off the Common Malware Enumeration (CME) initiative - a project meant to reduce the confusion caused by the different names security companies give worms, viruses and other...

Channel:
Security Strategy
Tags:
cme,
virus,
worm

Cracked: The Great Firewall of China

Even though this technique would only block communication between two particular points on the internet, the researchers calculated that a lone attacker using a single dial-up connection could still generate a "reasonably effective" denial of...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Network Security White Papers

A Framework for Malicious Workload Generation

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific