Mitigating Active Attacks Towards Client Networks Using the Bitmap Filter

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Chun-Ying Huang Articles by Kuan-Ta Chen Articles by Chin-Laung Lei

International Conference on Dependable Systems and Networks (DSN'06)

Philadelphia, Pennsylvania

June 25-June 28

ISBN: 0-7695-2607-1

	ASCII Text	x
	Chun-Ying Huang, Kuan-Ta Chen, Chin-Laung Lei, "Mitigating Active Attacks Towards Client Networks Using the Bitmap Filter," Dependable Systems and Networks, International Conference on, pp. 403-412, International Conference on Dependable Systems and Networks (DSN'06), 2006.

	BibTex	x
	@article{ 10.1109/DSN.2006.54, author = {Chun-Ying Huang and Kuan-Ta Chen and Chin-Laung Lei}, title = {Mitigating Active Attacks Towards Client Networks Using the Bitmap Filter}, journal ={Dependable Systems and Networks, International Conference on}, volume = {0}, year = {2006}, isbn = {0-7695-2607-1}, pages = {403-412}, doi = {http://doi.ieeecomputersociety.org/10.1109/DSN.2006.54}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Dependable Systems and Networks, International Conference on TI - Mitigating Active Attacks Towards Client Networks Using the Bitmap Filter SN - 0-7695-2607-1 SP403 EP412 A1 - Chun-Ying Huang, A1 - Kuan-Ta Chen, A1 - Chin-Laung Lei, PY - 2006 KW - null VL - 0 JA - Dependable Systems and Networks, International Conference on ER -

Chun-Ying Huang, National Taiwan University

Kuan-Ta Chen, National Taiwan University

Chin-Laung Lei, National Taiwan University

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/DSN.2006.54

With the emergence of active worms, the targets of attacks have been moved from well-known Internet servers to generic Internet hosts, and since the rate at which patches can be applied is always much slower than the spread of a worm, an Internet worm can usually attack or infect millions of hosts in a short time. It is difficult to eliminate Internet attacks globally; thus, protecting client networks from being attacked or infected is a relatively critical issue.

In this paper, we propose a method that protects client networks from being attacked by people who try to scan, attack, or infect hosts in local networks via unpatched vulnerabilities. Based on the symmetry of network traffic in both temporal and spatial domains, a bitmap filter is installed at the entry point of a client network to filter out possible attack traffic. Our evaluation shows that with a small amount of memory (less than 1 megabyte), more than 95% of attack traffic can be filtered out in a small- or medium-scale client network.

Citation:

Chun-Ying Huang, Kuan-Ta Chen, Chin-Laung Lei, "Mitigating Active Attacks Towards Client Networks Using the Bitmap Filter," dsn, pp.403-412, International Conference on Dependable Systems and Networks (DSN'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.