SSH Dictionary Attack and DNS Reverse Resolution Traffic in Campus Network
作者: Masaya Kumagai , Yasuo Musashi , Dennis Arturo Ludena Romana , Kazuya Takemori , Shinichiro Kubota
关键词:
摘要: We performed statistical analysis on the total PTR resource record (RR) based DNS query packet traffic from a university campus network to top domain server through March 14th, 2009, when servers in were under inbound SSH dictionary attack. The interesting results are obtained, as follows: (1) servers, especially, they have function of services, generated significant RR request 07:30-08:30 (2) we calculated sample variance for traffic, and (3) can change sharp manner 07:30-08:30. From these results, it is clearly concluded that detect attack by only observing network.
sci-hub.se 参考文章(8)
David Dagon, Cliff Changchun Zou, Wenke Lee, Modeling Botnet Propagation Using Time Zones. network and distributed system security symposium. ,(2006)
Paul Barford, Vinod Yegneswaran, An Inside Look at Botnets Advances in Information Security. pp. 171- 191 ,(2007) , 10.1007/978-0-387-44599-1_8
Kazuya Takemori, , Dennis Romana, Shinichiro Kubota, Kenichi Sugitani, Yasuo Musashi, , , , , Detection of NS Resource Record DNS Resolution Traffic, Host Search, and SSH Dictionary Attack Activities International Journal of Intelligent Engineering and Systems. ,vol. 2, pp. 35- 42 ,(2009) , 10.22266/IJIES2009.1231.05
J. Lane Thames, Randal Abler, David Keeling, A distributed active response architecture for preventing SSH dictionary attacks southeastcon. pp. 84- 89 ,(2008) , 10.1109/SECON.2008.4494264
Daniel Ramsbrock, Robin Berthier, Michel Cukier, Profiling Attacker Behavior Following SSH Compromises dependable systems and networks. pp. 119- 124 ,(2007) , 10.1109/DSN.2007.76
Yasuo Musashi, Tsuyoshi Usagawa, Kenichi Sugitani, Dennis Arturo Ludeña Romaña, Kazuya Takemori, Toshinori Sueyoshi, Shinichiro Kubota, Masaya Kumagai, DNS Based Detection of SSH Dictionary Attack in Campus Network ,(2009)
Dennis Romaña, , Kenichi Sugitani, Yasuo Musashi, , , DNS based Security Incidents Detection in Campus Network International Journal of Intelligent Engineering and Systems. ,vol. 1, pp. 17- 21 ,(2008) , 10.22266/IJIES2008.0331.03
Dennis Romaña, , Shinichiro Kubota, Kenichi Sugitani, Yasuo Musashi, , , , DNS based spam bots detection in a university International Journal of Intelligent Engineering and Systems. ,vol. 2, pp. 11- 18 ,(2009) , 10.22266/IJIES2009.0930.02