Stepping-stone detection algorithm based on order preserving mapping

I
ICPADS
2007
13th International Conference on Parallel and Distributed Systems - Volume 1 (ICPADS'07)
Abstract - Stepping-stone detection algorithm based on order preserving mapping

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by null Ying-Wei Kuo Articles by null Shou-Hsuan Stephen Huang

13th International Conference on Parallel and Distributed Systems - Volume 1 (ICPADS'07)

Hsinchu, Taiwan

December 05-December 07

ISBN: 978-1-4244-1889-3

	ASCII Text	x
	null Ying-Wei Kuo, null Shou-Hsuan Stephen Huang, "Stepping-stone detection algorithm based on order preserving mapping," Parallel and Distributed Systems, International Conference on, vol. 1, pp. 1-8, 13th International Conference on Parallel and Distributed Systems - Volume 1 (ICPADS'07), 2007.

	BibTex	x
	@article{ 10.1109/ICPADS.2007.4447772, author = {null Ying-Wei Kuo and null Shou-Hsuan Stephen Huang}, title = {Stepping-stone detection algorithm based on order preserving mapping}, journal ={Parallel and Distributed Systems, International Conference on}, volume = {1}, year = {2007}, isbn = {978-1-4244-1889-3}, pages = {1-8}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICPADS.2007.4447772}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Parallel and Distributed Systems, International Conference on TI - Stepping-stone detection algorithm based on order preserving mapping SN - 978-1-4244-1889-3 SP1 EP8 A1 - null Ying-Wei Kuo, A1 - null Shou-Hsuan Stephen Huang, PY - 2007 KW - null VL - 1 JA - Parallel and Distributed Systems, International Conference on ER -

null Ying-Wei Kuo, Department of Computer Science, University of Houston, TX 77204, USA

null Shou-Hsuan Stephen Huang, Department of Computer Science, University of Houston, TX 77204, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICPADS.2007.4447772

Intruders often do not attack victim hosts directly from their own hosts so as not to reveal their identity. Instead, intruders perform their attacks through a sequence of intermediary hosts before attacking the target. This type of attack is known as a “stepping-stone attack”. Stepping-stone detection is to determine if a host machine is being used as a stepping-stone by attackers. In this paper, we propose an algorithm for stepping-stone detection using a pervious mapping-based detection method. The technique reduces the detection problem to finding a mapping between two streams of packets. If our algorithm cannot find the mapping, then no such mapping exists. But if there is a mapping, then the proposed algorithm is guaranteed to find one and the solution will always be the one with minimum indexed. We provide the proof of the correctness of the algorithms. Furthermore, the algorithm has a low time complexity. The paper also discusses the effect of chaff packets on the ability to detect stepping-stones.

Citation:

null Ying-Wei Kuo, null Shou-Hsuan Stephen Huang, "Stepping-stone detection algorithm based on order preserving mapping," icpads, vol. 1, pp.1-8, 13th International Conference on Parallel and Distributed Systems - Volume 1 (ICPADS'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.