Yin Zhang, Vern Paxson  Home/Search
Context Related
| aciri.org/vern/pap...eppingsec00.ps.gz Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: aciri.org/vern/papers (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: One widely-used technique by which network attackers attain anonymity and complicate their apprehension is by employing stepping stones: they launch attacks not from their own computer but from intermediary hosts that they previously compromised. We develop an efficient algorithm for detecting stepping stones by monitoring a site's Internet access link. The algorithm is based on the distinctive characteristics (packet size, timing) of interactive traffic, and not on connection contents, and... (Update)
Cited by: More
Detection of Interactive Stepping Stones: - Algorithms And Confidence (Correct)
Toward a Framework for Internet Forensic Analysis - Vyas Sekar Yinglian (Correct)
Exploiting Independent State for Network Intrusion Detection - Sommer, Paxson (2004) (Correct)
Similar documents (at the sentence level):
76.6%: Detecting Stepping Stones - Zhang, Paxson (2000) (Correct)
Active bibliography (related documents): More All
0.4: Network Working Group T. Murphy, Jr. Request for Comments.. - Status Of This (Correct)
0.3: Detecting Backdoors - Zhang, Paxson (2000) (Correct)
0.2: A Protocol for Anonymous Communication Over the Internet - Levine, Shields (2000) (Correct)
Similar documents based on text: More All
0.7: Inter-Packet Delay Based Correlation for Tracing Encrypted.. - Wang, Reeves, Felix (2002) (Correct)
0.5: Public Information Server fo Tracing Intruders in the Internet - Asaka, Onabuta, Goto (2001) (Correct)
0.5: Multiscale Stepping-Stone Detection: Detecting.. - Donoho, Flesia.. (2002) (Correct)
Related documents from co-citation: More All
8: Holding Intruders Accountable on the Internet (context) - Staniford-Chen, Heberlein - 1995
7: Finding a Connection Chain for Tracing Intruders (context) - Yoda, Etoh - 2000
5: Multiscale stepping-stone detection: detecting pairs of jittered interactive str.. - Donoho, Flesia et al. - 2002
BibTeX entry: (Update)
Yin Zhang and Vern Paxson. Detecting stepping stones. In Proc. of 9th USENIX Security Symposium, August 2000. A The n-Viterbi Algorithm The Viterbi algorithm is widely used in solving HMM http://citeseer.ist.psu.edu/article/zhang00detecting.html More
@inproceedings{ zhangdetecting,
author = "Yin Zhang and Vern Paxson",
title = "Detecting Stepping Stones",
pages = "171--184",
url = "citeseer.ist.psu.edu/article/zhang00detecting.html" }
Citations (may not include all citations):610 Wide-Area Traffic: The Failure of Poisson Modeling - Paxson, Floyd - 1995 DBLP
149 The Synchronization of Periodic Routing Messages - Floyd, Jacobson - 1994 ACM DBLP
123 Bro: A System for Detecting Network Intruders in Real-Time - Paxson - 1998 DBLP
76 An Empirical Workload Model for Driving Wide-area TCP/IP Net.. - Danzig, Jamin et al. - 1992
32 The Finger User Information Protocol (context) - Zimmerman - 1991
29 Insertion, Evasion, and Denial of Service: Eluding Network I.. - Ptacek, Newsham - 1998
23 Internet Relay Chat Protocol (context) - Oikarinen, Reed - 1993
15 SSH Transport Layer Protocol (context) - Ylonen, Kivinen et al. - 1999
14 Telnet Option Specifications (context) - Postel, Reynolds - 1983
6 Telnet Linemode Option (context) - Borman - 1990
5 Holding Intruders Accountable on the Internet (context) - Staniford-Chen, Heberlein - 1995 ACM
3 Telnet Environment Option (context) - Alexander - 1994
1 Denial-ofService Tools (context) - Response - 1999
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www.aciri.org/vern/papers.html): More
End-to-End Internet Packet Dynamics - Paxson (1997) (Correct)
Detecting Backdoors - Zhang, Paxson (2000) (Correct)
Experiences with NIMI - Paxson, Adams, Mathis (2000) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC