Skip to Main content Skip to Navigation
New interface
Conference papers

Protocol-Independent Detection of Dictionary Attacks

Abstract : Data throughput of current high-speed networks makes it prohibitively expensive to detect attacks using conventional means of deep packet inspection. The network behavior analysis seemed to be a solution, but it lacks in several aspects. The academic research focuses on sophisticated and advanced detection schemes that are, however, often problematic to deploy into the production. In this paper we try different approach and take inspiration from industry practice of using relatively simple but effective solutions. We introduce a model of malicious traffic based on practical experience that can be used to create simple and effective detection methods. This model was used to develop a successful proof-of-concept method for protocol-independent detection of dictionary attacks that is validated with empirical data in this paper.
Complete list of metadata

Cited literature [10 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Tuesday, March 28, 2017 - 11:24:26 AM
Last modification on : Wednesday, November 18, 2020 - 6:32:03 PM
Long-term archiving on: : Thursday, June 29, 2017 - 4:44:53 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Martin Drašar. Protocol-Independent Detection of Dictionary Attacks. 19th Open European Summer School (EUNICE), Aug 2013, Chemnitz, Germany. pp.304-309, ⟨10.1007/978-3-642-40552-5_30⟩. ⟨hal-01497030⟩



Record views


Files downloads