English
Related papers

Related papers: Why Botnets Work: Distributed Brute-Force Attacks …

200 papers

Consider the problem of guessing the realization of a random vector $\textbf{X}$ by repeatedly submitting queries (guesses) of the form "Is $\textbf{X}$ equal to $\textbf{x}$?" until an affirmative answer is obtained. In this setup, a key…

Information Theory · Computer Science 2018-11-13 Neri Merhav , Asaf Cohen

Consider the situation where a word is chosen probabilistically from a finite list. If an attacker knows the list and can inquire about each word in turn, then selecting the word via the uniform distribution maximizes the attacker's…

Information Theory · Computer Science 2013-05-14 Mark M. Christiansen , Ken R. Duffy , Flavio du Pin Calmon , Muriel Medard

According to recent empirical studies, a majority of users have the same, or very similar, passwords across multiple password-secured online services. This practice can have disastrous consequences, as one password being compromised puts…

Information Theory · Computer Science 2020-09-01 Salman Salamatian , Wasim Huleihel , Ahmad Beirami , Asaf Cohen , Muriel Médard

The Guesswork problem was originally motivated by a desire to quantify computational security for single user systems. Leveraging recent results from its analysis, we extend the remit and utility of the framework to the quantification of…

Information Theory · Computer Science 2017-08-04 Mark M. Christiansen , Ken R. Duffy , Flavio du Pin Calmon , Muriel Medard

We study a notion of guesswork, where multiple agents intend to launch a coordinated brute-force attack to find a single binary secret string, and each agent has access to side information generated through either a BEC or a BSC. The…

Information Theory · Computer Science 2017-05-29 Salman Salamatian , Ahmad Beirami , Asaf Cohen , Muriel Médard

Given a collection of strings, each with an associated probability of occurrence, the guesswork of each of them is their position in a list ordered from most likely to least likely, breaking ties arbitrarily. Guesswork is central to several…

Information Theory · Computer Science 2019-08-12 Ahmad Beirami , Robert Calderbank , Mark Christiansen , Ken Duffy , Muriel Médard

Cybersecurity attacks are growing both in frequency and sophistication over the years. This increasing sophistication and complexity call for more advancement and continuous innovation in defensive strategies. Traditional methods of…

Machine Learning · Computer Science 2020-01-20 Antoine Delplace , Sheryl Hermoso , Kristofer Anandita

A central challenge in password security is to characterize the attacker's guessing curve i.e., what is the probability that the attacker will crack a random user's password within the first $G$ guesses. A key challenge is that the guessing…

Cryptography and Security · Computer Science 2022-09-22 Jeremiah Blocki , Peiyuan Liu

Botnets are computer networks controlled by malicious actors that present significant cybersecurity challenges. They autonomously infect, propagate, and coordinate to conduct cybercrimes, necessitating robust detection methods. This…

Cryptography and Security · Computer Science 2024-09-04 Rahul Yumlembam , Biju Issac , Seibu Mary Jacob , Longzhi Yang

Distributed Denial-of-Service (DDoS) attacks are usually launched through the $botnet$, an "army" of compromised nodes hidden in the network. Inferential tools for DDoS mitigation should accordingly enable an early and reliable…

Information Theory · Computer Science 2016-09-12 Vincenzo Matta , Mario Di Mauro , Maurizio Longo

We consider an abstraction of computational security in password protected systems where a user draws a secret string of given length with i.i.d. characters from a finite alphabet, and an adversary would like to identify the secret string…

Information Theory · Computer Science 2017-12-27 Arman Rezaee , Ahmad Beirami , Ali Makhdoumi , Muriel Medard , Ken Duffy

Today, offline attacks are one of the most severe threats to password security. These attacks have claimed millions of passwords from prominent websites including Yahoo, LinkedIn, Twitter, Sony, Adobe and many more. Therefore, as a…

Cryptography and Security · Computer Science 2020-09-15 Harshal Tupsamudre , Sachin Lodha

We propose an operational measure of information leakage in a non-stochastic setting to formalize privacy against a brute-force guessing adversary. We use uncertain variables, non-probabilistic counterparts of random variables, to construct…

Information Theory · Computer Science 2021-01-29 Farhad Farokhi , Ni Ding

Inspired by scenarios where the strategic network design and defense or immunisation are of the central importance, Goyal et al. [3] defined a new Network Formation Game with Attack and Immunisation. The authors showed that despite the…

Computer Science and Game Theory · Computer Science 2023-02-13 Carme Àlvarez , Arnau Messegué

The guesswork refers to the distribution of the minimum number of trials needed to guess a realization of a random variable accurately. In this study, a non-trivial generalization of the guesswork called guessing cost (also referred to as…

Information Theory · Computer Science 2023-12-11 Suayb S. Arslan , Elif Haytaoglu

We study cascading failures in smart grids, where an attacker selectively compromises the nodes with probabilities proportional to their degrees, betweenness, or clustering coefficient. This implies that nodes with high degrees,…

Social and Information Networks · Computer Science 2022-06-28 Sushmita Ruj , Arindam Pal

In recent times we hear increasingly often about cyber attacks on various commercial and strategic sites that manage to escape any defense. In this article, we model such attacks on networks via stochastic processes and predict the time of…

Probability · Mathematics 2019-01-23 Jewgeni H. Dshalalow , Ryan T. White

The new generation of botnets leverages Artificial Intelligent (AI) techniques to conceal the identity of botmasters and the attack intention to avoid detection. Unfortunately, there has not been an existing assessment tool capable of…

Cryptography and Security · Computer Science 2021-12-07 Hooman Alavizadeh , Julian Jang-Jaccard , Tansu Alpcan , Seyit A. Camtepe

Network intrusion detection is the process of identifying malicious behaviors that target a network and its resources. Current systems implementing intrusion detection processes observe traffic at several data collecting points in the…

Cryptography and Security · Computer Science 2015-09-16 Michel Toulouse , Bui Quang Minh , Philip Curtis

This paper addresses the security allocation problem within networked control systems, which consist of multiple interconnected control systems under the influence of two opposing agents: a defender and a malicious adversary. The adversary…

Systems and Control · Electrical Eng. & Systems 2026-03-31 Anh Tung Nguyen , Andreas Hertzberg , André MH Teixeira
‹ Prev 1 2 3 10 Next ›