Detection of Network Buffer Overflow Attacks: A Case Study
The result's identifiers
Result code in IS VaVaI
<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216305%3A26230%2F13%3APU106347" target="_blank" >RIV/00216305:26230/13:PU106347 - isvavai.cz</a>
Result on the web
<a href="http://www.fit.vutbr.cz/research/pubs/all.php?id=10321" target="_blank" >http://www.fit.vutbr.cz/research/pubs/all.php?id=10321</a>
DOI - Digital Object Identifier
—
Alternative languages
Result language
angličtina
Original language name
Detection of Network Buffer Overflow Attacks: A Case Study
Original language description
This paper presents an automated detection method based on classification of network traffic using predefined set of network metrics. We proposed the set of metrics with focus on behavior of buffer overflow attacks and their sufficient description without the need of deep packet inspection. In this paper we describe two laboratory experiments of automated detection of buffer overflow attacks on vulnerable network services and their description by proposed set of network metrics. We present the principles of several chosen network metrics and their application on experimental attacks according to their nature in comparison to valid communication.
Czech name
—
Czech description
—
Classification
Type
D - Article in proceedings
CEP classification
—
OECD FORD branch
10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)
Result continuities
Project
<a href="/en/project/ED1.1.00%2F02.0070" target="_blank" >ED1.1.00/02.0070: IT4Innovations Centre of Excellence</a><br>
Continuities
P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)<br>Z - Vyzkumny zamer (s odkazem do CEZ)<br>S - Specificky vyzkum na vysokych skolach
Others
Publication year
2013
Confidentiality
S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů
Data specific for result type
Article name in the collection
The 47th Annual International Carnahan Conference on Security Technology
ISBN
978-958-8790-65-7
ISSN
—
e-ISSN
—
Number of pages
4
Pages from-to
128-131
Publisher name
Institute of Electrical and Electronics Engineers
Place of publication
Mendellin
Event location
Medellín
Event date
Oct 8, 2013
Type of event by nationality
WRD - Celosvětová akce
UT code for WoS article
—