English
Related papers

Related papers: Optimal Source-Based Filtering of Malicious Traffi…

200 papers

How can we protect the network infrastructure from malicious traffic, such as scanning, malicious code propagation, and distributed denial-of-service (DDoS) attacks? One mechanism for blocking malicious traffic is filtering: access control…

Networking and Internet Architecture · Computer Science 2008-11-25 Fabio Soldo , Athina Markopoulou , Katerina Argyraki

Filtering packet traffic and rules of permit/denial of data packets into network nodes are granted by facilitating Access Control Lists (ACL). This paper proposes a procedure of adding a link load threshold value to the access control list…

Networking and Internet Architecture · Computer Science 2021-01-27 Zohre Ranjbar Mojaveri , Andras Farago

Distributed Denial-of-Service (DDoS) attacks are a major problem in the Internet today. In one form of a DDoS attack, a large number of compromised hosts send unwanted traffic to the victim, thus exhausting the resources of the victim and…

Networking and Internet Architecture · Computer Science 2007-05-23 Karim El Defrawy , Athina Markopoulou , Katerina Argyraki

Denial of Service (DoS) attacks are one of the most challenging threats to Internet security. An attacker typically compromises a large number of vulnerable hosts and uses them to flood the victim's site with malicious traffic, clogging its…

Networking and Internet Architecture · Computer Science 2012-10-26 Katerina J. Argyraki , David R. Cheriton

In recent years there has been a dramatic increase in the number of malware attacks that use encrypted HTTP traffic for self-propagation or communication. Antivirus software and firewalls typically will not have access to encryption keys,…

Cryptography and Security · Computer Science 2023-12-11 Anish Singh Shekhawat , Fabio Di Troia , Mark Stamp

In recent years, state-of-the-art traffic-control devices have evolved from standalone hardware to networked smart devices. Smart traffic control enables operators to decrease traffic congestion and environmental impact by acquiring…

Cryptography and Security · Computer Science 2019-08-06 Aron Laszka , Waseem Abbas , Yevgeniy Vorobeychik , Xenofon Koutsoukos

Data-poisoning attacks can disrupt the efficient operations of transportation systems by misdirecting traffic flows via falsified data. One challenge in countering these attacks is to reduce the uncertainties on the types of attacks, such…

Optimization and Control · Mathematics 2024-09-12 Yue Yu , Adam J. Thorpe , Jesse Milzman , David Fridovich-Keil , Ufuk Topcu

The detection of network flows that send excessive amounts of traffic is of increasing importance to enforce QoS and to counter DDoS attacks. Large-flow detection has been previously explored, but the proposed approaches can be used on…

Networking and Internet Architecture · Computer Science 2018-07-17 Hao Wu , Hsu-Chun Hsiao , Daniele E. Asoni , Simon Scherrer , Adrian Perrig , Yih-Chun Hu

Last mile link is often a bottleneck for end user. However, users typically have multiple ways of accessing the Internet (cellular, ADSL, public Wifi). This observation led to creation of protocols like mTCP or R-MTP. Current bandwidth…

Networking and Internet Architecture · Computer Science 2015-09-29 Michał Zieliński

A widely used defense practice against malicious traffic on the Internet is through blacklists: lists of prolific attack sources are compiled and shared. The goal of blacklists is to predict and block future attack sources. Existing…

Networking and Internet Architecture · Computer Science 2009-08-17 Fabio Soldo , Anh Le , Athina Markopoulou

Internet faces the problem of congestion due to its increased use. AQM algorithm is a solution to the problem of congestion control in the Internet. There are various existing algorithms that have evolved over the past few years to solve…

Networking and Internet Architecture · Computer Science 2010-05-25 K. Chitra , G. Padamavathi

Research and development of techniques which detect or remediate malicious network activity require access to diverse, realistic, contemporary data sets containing labeled malicious connections. In the absence of such data, said techniques…

Despite the proliferation of traffic filtering capabilities throughout the Internet, attackers continue to launch distributed denial-of-service (DDoS) attacks to successfully overwhelm the victims with DDoS traffic. In this paper, we…

Networking and Internet Architecture · Computer Science 2023-12-27 Jun Li , Devkishen Sisodia , Yebo Feng , Lumin Shi , Mingwei Zhang , Christopher Early , Peter Reiher

The goal of congestion control is to avoid congestion in network elements. A network element is congested if it is being offered more traffic than it can process. To detect such situations and to neutralize them we should monitor traffic in…

Networking and Internet Architecture · Computer Science 2009-11-24 Maxim A. Kolosovskiy , Elena N. Kryuchkova

In this paper we address the problem of fast and fair transmission of flows in a router, which is a fundamental issue in networks like the Internet. We model the interaction between a TCP source and a bottleneck queue with the objective of…

Networking and Internet Architecture · Computer Science 2016-02-18 Josu Doncel , Urtzi Ayesta , Konstantine Avrachenkov , Peter Jacko

The existence of errors or inconsistencies in the configuration of security components, such as filtering routers and/or firewalls, may lead to weak access control policies -- potentially easy to be evaded by unauthorized parties. We…

Cryptography and Security · Computer Science 2008-12-18 Joaquin Garcia-Alfaro , Frederic Cuppens , Nora Cuppens-Boulahia

Identifying threats in a network traffic flow which is encrypted is uniquely challenging. On one hand it is extremely difficult to simply decrypt the traffic due to modern encryption algorithms. On the other hand, passing such an encrypted…

Cryptography and Security · Computer Science 2020-11-10 Syed Muhammad Kumail Raza , Juan Caballero

Today, considerable Internet traffic is sent from the datacenter and heads for users. The characteristics of connections served by servers in datacenters are usually diverse and varied over time, with continuous upgrades in network…

Networking and Internet Architecture · Computer Science 2018-10-23 Kefan Chen , Danfeng Shan , Xiaohui Luo , Tong Zhang , Yajun Yang , Ya Zhao , Fengyuan Ren

Current content filtering and blocking methods are susceptible to various circumvention techniques and are relatively slow in dealing with new threats. This is due to these methods using shallow pattern recognition that is based on regular…

Cryptography and Security · Computer Science 2022-10-11 Mohammad Ismail Daud

Unsolicited bulk email (aka. spam) is a major problem on the Internet. To counter spam, several techniques, ranging from spam filters to mail protocol extensions like hashcash, have been proposed. In this paper we investigate the…

Cryptography and Security · Computer Science 2007-05-23 Flavio D. Garcia , Jaap-Henk Hoepman
‹ Prev 1 2 3 10 Next ›