Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
INFOCOM
2000
IEEE
2000
IEEE
Transport and Application Protocol Scrubbing
— This paper describes the design and implementation of a protocol scrubber, a transparent interposition mechanism for explicitly removing network attacks at both the transport and application protocol layers. The transport scrubber supports downstream passive network-based intrusion detection systems; whereas the application scrubbing mechanism supports transparent fail-closed active network-based intrusion detection systems. The transport scrubber’s role is to convert ambiguous network flows into well-behaved flows that are unequivocally interpreted by all downstream endpoints. As an example, this paper presents the implementation of a TCP/IP scrubber that eliminates insertion and evasion attacks – attacks that use ambiguities to subvert detection – on passive network-based intrusion detection systems, while preserving high performance. The application protocol scrubbing mechanism is used as a substrate for building fail-closed active network-based intrusion detections syst...
Real-time TrafficCommunications | INFOCOM 2000 | Intrusion Detection Systems | Network-based Intrusion Detections | Passive Network-based Intrusion |
| Added | 31 Jul 2010 |
| Updated | 31 Jul 2010 |
| Type | Conference |
| Year | 2000 |
| Where | INFOCOM |
| Authors | G. Robert Malan, David Watson, Farnam Jahanian, Paul Howell |
Comments (0)
Researcher Info
|
