Identification of Repeated DoS Attacks Using Network Traffic Forensics Export

@misc{citeulike:710515, abstract = {Once an attacker has compromised a set of machines, typically, he will repeatedly deploy the same set of machines to attack different targets. In this paper, we propose a method to identify repeated attack scenarios, that is, the combination of a particular set of hosts and attack tool, by making use of pattern recognition techniques. While previous methods have focused on intrusion detection using anomaly and signature matching based primarily on header content, our approach attempts to...}, author = {Hussain, Alefiya and Heidemann, John and Papadopoulos, Christos}, citeulike-article-id = {710515}, citeulike-linkout-0 = {http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.2.8549}, keywords = {analysis, denial-of-service, fingerprinting, forensics, network, spectral}, posted-at = {2006-06-25 21:12:56}, priority = {4}, title = {Identification of Repeated DoS Attacks Using Network Traffic Forensics}, url = {http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.2.8549} }

TY - GEN ID - citeulike:710515 L3 - citeulike-article-id:710515 N2 - Once an attacker has compromised a set of machines, typically, he will repeatedly deploy the same set of machines to attack different targets. In this paper, we propose a method to identify repeated attack scenarios, that is, the combination of a particular set of hosts and attack tool, by making use of pattern recognition techniques. While previous methods have focused on intrusion detection using anomaly and signature matching based primarily on header content, our approach attempts to... TI - Identification of Repeated DoS Attacks Using Network Traffic Forensics KW - analysis KW - denial-of-service KW - fingerprinting KW - forensics KW - network KW - spectral AU - Hussain, Alefiya AU - Heidemann, John AU - Papadopoulos, Christos UR - http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.2.8549 ER -