Logo des Repositoriums
 
Konferenzbeitrag

SIEGE: Service-independent enterprise-grade protection against password scans

Lade...
Vorschaubild

Volltext URI

Dokumententyp

Text/Conference Paper

Zusatzinformation

Datum

2014

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Verlag

Gesellschaft für Informatik e.V.

Zusammenfassung

Security is one of the main challenges today, complicated significantly by the heterogeneous and open academic networks with thousands of different applications. Botnet-based brute-force password scans are a common security threat against the open academic networks. Common defenses are hard to maintain, error-prone and do not reliably discriminate between user error and coordinated attack. In this paper, we present a novel approach, which allows to secure many network services at once. By combining in-app tracking, local and global crowdsourcing, geographic information, and probabilistic user-bot distinction through differential password analysis, our PAM-based detection module can provide higher accuracy and faster blocking of botnets. In the future, we aim to make the mechanism even more generic and thus provide a distributed defense against one of the strongest threats against our infrastructure.

Beschreibung

Waldvogel, Marcel; Kollek, Jürgen (2014): SIEGE: Service-independent enterprise-grade protection against password scans. 7. DFN-Forum - Kommunikationstechnologien. Bonn: Gesellschaft für Informatik e.V.. PISSN: 1617-5468. ISBN: 978-3-88579-625-1. pp. 121-130. Fulda. 16.-17. Juni 2014

Schlagwörter

Zitierform

DOI

Tags