You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Firewalls

Firewalls White Papers

A Source Address Filtering Firewall to Defend Against Denial of Service Attacks

Tags:
firewalls

Overview Denial-of-Service (DoS) attacks exploit a very fundamental fact that the computation and bandwidth resources of their targets are limited. When the attackers generate large volume of useless packets to deplete the available resources of the targets, the targets will be unable to accommodate the legitimate service requests. This paper proposes a firewall mechanism that tries to filter off the malicious packets when the protected network is under DoS attacks. The idea is to judge the legitimacy status of each incoming packet from its source address in a statistical way. The scheme utilizes the traffic intensity difference between the legitimate users and the malicious attackers to make this determination in real time. The proposed firewall mechanism can be used to protect both wired and wireless networks.

Further White Paper Details
Publisher	Institute of Electrical and Electronics Engineers	File Format	PDF
Date Published	October 2004
Format	White Papers
Topics	Firewalls, Network Security, Security Tools

Did you find this white paper useful? 4 out of 8 users found this white paper useful

Balancing Security Against Productivity

Publisher:
Novell

Security: New strides in preventing intrusions.

Publisher:
IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

Total Endpoint Protection: Lower Costs and Increase Compliance

Publisher:
McAfee

Tags:
firewalls

Slammer time - SQL worm brings net to its knees over weekend

Anti-virus firm F-Secure said the effects were so marked because the worm generates massive amounts of network packets, overloading servers and routers and slowing down network traffic. SQL uses a keep-alive mechanism to distinguish between active...

Channel:
Security Strategy

SCO denial-of-service attack intensifies

By Thursday morning, the attack had been reduced to some 3,000 packets per second and the company's servers were responding to one in every three requests. As many as 50,000 packets per second hit the company's servers on Wednesday night.

Channel:
Law & Policy

Veritas flaw enables corporate attacks

Malicious code to exploit a vulnerability in Veritas Software's Backup Exec Remote Agent for Windows is publicly available, the US Computer Emergency Readiness Team (US-Cert) said in an alert on Thursday.

Channel:
Security Strategy
Tags:
flaw,
veritas

Windows worm holes plugged

Attackers can remotely send malicious packets and cause code execution," he said. It is a key part of Windows that can't be turned off or easily protected by a firewall, Sarwate said. A hacker could exploit the Workstation Service flaw by creating...

Vista: Security industry ready for retail launch

For example, Internet Explorer 7 runs in a protected mode to prevent installation of malicious software through security holes. The products, for Vista and Windows XP, will include a new detection mechanism called "Sonar" that looks at the...

The biggest VoIP security threats - and how to stop them

It can affect any internet-connected device and works by flooding networks with spurious traffic or server requests. The attack is generated by machines that have been compromised by a virus or other malware and the massive increase in traffic...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Firewalls White Papers

A Source Address Filtering Firewall to Defend Against Denial of Service Attacks

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific