Logo des Repositoriums
 

SIEGE: Service-independent enterprise-grade protection against password scans

dc.contributor.authorWaldvogel, Marcel
dc.contributor.authorKollek, Jürgen
dc.contributor.editorMüller, Paul
dc.contributor.editorNeumair, Bernhard
dc.contributor.editorReiser, Helmut
dc.contributor.editorRodosek, Gabi Dreo
dc.date.accessioned2017-07-26T10:55:42Z
dc.date.available2017-07-26T10:55:42Z
dc.date.issued2014
dc.description.abstractSecurity is one of the main challenges today, complicated significantly by the heterogeneous and open academic networks with thousands of different applications. Botnet-based brute-force password scans are a common security threat against the open academic networks. Common defenses are hard to maintain, error-prone and do not reliably discriminate between user error and coordinated attack. In this paper, we present a novel approach, which allows to secure many network services at once. By combining in-app tracking, local and global crowdsourcing, geographic information, and probabilistic user-bot distinction through differential password analysis, our PAM-based detection module can provide higher accuracy and faster blocking of botnets. In the future, we aim to make the mechanism even more generic and thus provide a distributed defense against one of the strongest threats against our infrastructure.en
dc.identifier.isbn978-3-88579-625-1
dc.identifier.pissn1617-5468
dc.language.isoen
dc.publisherGesellschaft für Informatik e.V.
dc.relation.ispartof7. DFN-Forum - Kommunikationstechnologien
dc.relation.ispartofseriesLecture Notes in Informatics (LNI) - Proceedings, Volume P-231
dc.titleSIEGE: Service-independent enterprise-grade protection against password scansen
dc.typeText/Conference Paper
gi.citation.endPage130
gi.citation.publisherPlaceBonn
gi.citation.startPage121
gi.conference.date16.-17. Juni 2014
gi.conference.locationFulda

Dateien

Originalbündel
1 - 1 von 1
Lade...
Vorschaubild
Name:
121.pdf
Größe:
178.72 KB
Format:
Adobe Portable Document Format