网络防御中以网络为中心机制的自适应使用

Sixth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing, 2003. Pub Date : 2003-05-14 DOI:10.1109/ISORC.2003.1199253

M. Atighetchi, P. Pal, F. Webber, Christopher C. Jones

{"title":"网络防御中以网络为中心机制的自适应使用","authors":"M. Atighetchi, P. Pal, F. Webber, Christopher C. Jones","doi":"10.1109/ISORC.2003.1199253","DOIUrl":null,"url":null,"abstract":"Attacks against distributed systems frequently start at the network layer by gathering network related information (such as open TCP ports) and continue on by exhausting resources, or abusing protocols. Defending against network-based attacks is a major focus area in the APOD (Application That Participate in Their Own Defense) project, which set out to develop technologies that increase an application's resilience against cyber attacks. This paper gives an overview of APOD's current set of network-level defenses. Specific network-based defense mechanisms are described first, followed by a discussion on how to use them in local defensive behavior. Defense strategies, which specify coordinated defensive behavior across a distributed system, are discussed next, followed by results from initial experimental evaluation.","PeriodicalId":204411,"journal":{"name":"Sixth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing, 2003.","volume":"120 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2003-05-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"96","resultStr":"{\"title\":\"Adaptive use of network-centric mechanisms in cyber-defense\",\"authors\":\"M. Atighetchi, P. Pal, F. Webber, Christopher C. Jones\",\"doi\":\"10.1109/ISORC.2003.1199253\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Attacks against distributed systems frequently start at the network layer by gathering network related information (such as open TCP ports) and continue on by exhausting resources, or abusing protocols. Defending against network-based attacks is a major focus area in the APOD (Application That Participate in Their Own Defense) project, which set out to develop technologies that increase an application's resilience against cyber attacks. This paper gives an overview of APOD's current set of network-level defenses. Specific network-based defense mechanisms are described first, followed by a discussion on how to use them in local defensive behavior. Defense strategies, which specify coordinated defensive behavior across a distributed system, are discussed next, followed by results from initial experimental evaluation.\",\"PeriodicalId\":204411,\"journal\":{\"name\":\"Sixth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing, 2003.\",\"volume\":\"120 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2003-05-14\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"96\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Sixth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing, 2003.\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISORC.2003.1199253\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Sixth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing, 2003.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISORC.2003.1199253","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 96

摘要

针对分布式系统的攻击通常从网络层开始，通过收集网络相关信息(如打开TCP端口)，然后通过耗尽资源或滥用协议继续进行攻击。防御基于网络的攻击是APOD(参与自身防御的应用程序)项目的主要重点领域，该项目旨在开发提高应用程序抵御网络攻击的能力的技术。本文概述了APOD当前的一组网络级防御。首先描述了具体的基于网络的防御机制，然后讨论了如何在本地防御行为中使用它们。接下来讨论的是防御策略，它指定了跨分布式系统的协调防御行为，然后是初始实验评估的结果。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Adaptive use of network-centric mechanisms in cyber-defense

Attacks against distributed systems frequently start at the network layer by gathering network related information (such as open TCP ports) and continue on by exhausting resources, or abusing protocols. Defending against network-based attacks is a major focus area in the APOD (Application That Participate in Their Own Defense) project, which set out to develop technologies that increase an application's resilience against cyber attacks. This paper gives an overview of APOD's current set of network-level defenses. Specific network-based defense mechanisms are described first, followed by a discussion on how to use them in local defensive behavior. Defense strategies, which specify coordinated defensive behavior across a distributed system, are discussed next, followed by results from initial experimental evaluation.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Sixth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing, 2003.

自引率

0.00%

发文量

期刊最新文献

Model-driven development of real-time software using OMG standards Issues with object orientation in verifying safety-critical systems Probabilistic simulation-based analysis of complex real-time systems VisiTrack - video based incremental tracking in real time Implication of embedded Linux in Japanese embedded industries