See this document in CiteSeerX!

Characteristics of Internet Background Radiation (2004)  (Make Corrections)  (11 citations)
Ruoming Pang, Vinod Yegneswaran, Paul Barford, Vern Paxson, Larry Peterson



  Home/Search   Context   Related

 
View or download:
wisc.edu/~vinod/radiationpaper.pdf
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  wisc.edu/anomaly (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: Monitoring any portion of the Internet address space reveals incessant activity. This holds even when monitoring traffic sent to unused addresses, which we term "background radiation." Background radiation reflects fundamentally nonproductive traffic, either malicious (flooding backscatter, scans for vulnerabilities, worms) or benign (misconfigurations). While the general presence of background radiation is well known to the network operator community, its nature has yet to be broadly... (Update)

Cited by:   More
Scan Detection: A Data Mining Approach - Gyorgy Simon Univ (2005)   (Correct)
ftw. Technical Report - Printed February On (2006)   (Correct)
Collaborating Against Common Enemies - Sachin Katti Balachander (2005)   (Correct)

Active bibliography (related documents):   More   All
0.7:   On the Design and Use of Internet Sinks for Network.. - Yegneswaran, Barford.. (2004)   (Correct)
0.5:   The HoneyTank : a scalable approach - To Collect Malicious   (Correct)
0.5:   The HoneyTank : a scalable approach to collect.. - Vanderavero..   (Correct)

Similar documents based on text:
0.4:   Fusion and Filtering in Distributed Intrusion Detection.. - Barford, Jha, Yegneswara (2004)   (Correct)
0.4:   A High-level Programming Environment for Packet Trace.. - Pang, Paxson (2003)   (Correct)
0.3:   A Framework for Malicious Workload Generation - Sommers, Yegneswaran, Barford (2004)   (Correct)

Related documents from co-citation:   More   All
5:   Inferring Internet Denial-of-Service Activity - Moore, Voelker et al. - 2001
5:   Code-Red: a case study on the spread and victims of an Internet worm - Moore, Shannon et al. - 2002
5:   IEEE Security and Privacy (context) - Moore, Paxson et al. - 2003

BibTeX entry:   (Update)

R. Pang, V. Yegneswaran, P. Barford, V. Paxson, and L. Peterson. Characteristics of Internet Background Radiation. In Proceedings of ACM Internet Measurement Conference, October, 2004. http://citeseer.ist.psu.edu/pang04characteristics.html   More

@misc{ pang04characteristics,
  author = "R. Pang and V. Yegneswaran and P. Barford and V. Paxson and L. Peterson",
  title = "Characteristics of Internet Background Radiation",
  text = "R. Pang, V. Yegneswaran, P. Barford, V. Paxson, and L. Peterson. Characteristics
    of Internet Background Radiation. In Proceedings of ACM Internet Measurement
    Conference, October, 2004.",
  year = "2004",
  url = "citeseer.ist.psu.edu/pang04characteristics.html" }
Citations (may not include all citations):
270   Web server workload characterization: The search for invaria.. - Arlitt, Williamson - 1996
261   Wide area Internet traffic patterns and characteristics (context) - Thompson, Miller et al. - 1997
161   Empirically-derived analytic models of wide-area tcp connect.. - Paxson - 1994
140   Snort: Lightweight intrusion detection for networks (context) - Roesch - 1999
123   Bro: A system for detecting network intruders in real time - Paxson - 1999
113   Inferring internet denial of service activity - Moore, Voelker et al. - 2001
111   ACM Transactions on Computer Systems (context) - Kohler, Morris et al. - 2000
76   empirical workload model driving wide area TCPIP network sim.. - Caceres, Estrin et al. - 1992
74   Code red: A case study on the spread and victims of an inter.. - Moore, Shannon et al. - 2002
74   Internet quarantine: Requirements for containing self-propag.. - Moore, Shannon et al. - 2003
69   How to 0wn the Internet in Your Spare Time - Staniford, Paxson et al. - 2002
29   distributed worm signature detection (context) - Kim, Karp et al. - 2004
28   spread sapphireslammer worm (context) - Savage, Staniford et al. - 2003
23   Fast portscan detectionusing sequential hypothesis testing - Jung, Paxson et al. - 2004
23   Internet intrusions: Global characteristics and prevalence - Yegneswaran, Barford et al. - 2003
22   Inside the slammer worm (context) - Moore, Paxson et al. - 2003
18   Network telescopes: Observing small or distant security even.. (context) - Moore - 2002
16   Honeycomb--creating intrusion detection signatures using hon.. - Kreibich, Crowcroft - 2003
13   The Earlybird system for real-time detection of unknown worm.. (context) - Singh, Estan et al. - 2003
8   the design and use of internet sinks for network abuse monit.. - Yegneswaran, Barford et al. - 2004
4   Attack processes found on the internet (context) - Dacier, Pouget et al. - 2004
3   The SNORT network intrusion detection system (context) - Caswell, Roesch - 2004
3   The Honeyd Virtual Honeypot (context) - Provos - 2003
2   Creating arbitrary shellcode in unicode expanded strings (context) - Anley - 2002
2   BGPv4 Security Risk Assessment (context) - Greene - 2002
1   WebDAV buffer overflow vulnerability (context) - Windows - 2000
1   translate: f (context) - Focus - 2004
http://www.liutilities.com/products/wintaskspro/
http://securityresponse.symantec.com/avcenter/
http://www.sophos.com/virusinfo/analyses/
http://www.mynetwatchman.com/kb/security/articles/iraqiworm
http://www.opengroup.org/
http://www.synfin.net/papers/flowreplay.pdf
http://securityresponse.symantec.com/avcenter/venc/
http://www.securityfocus.com/bid/6666
http://www.lurhq.com/
http://www.snia.org/tech
http://securityresponse.symantec.com/
http://www.per.rcpt.to/lists/
http://www.sophos.com/virusinfo/analyses/w32xiboa.html
http://www.securityfocus.com/archive/1/347576
http://www.securityfocus.com/bid/8205



The graph only includes citing articles where the year of publication is known.

Documents on the same site (http://wail.cs.wisc.edu/anomaly.html):   More
On the Design and Use of Internet Sinks for Network.. - Yegneswaran, Barford.. (2004)   (Correct)
A Framework for Malicious Workload Generation - Sommers, Yegneswaran, Barford (2004)   (Correct)
Fusion and Filtering in Distributed Intrusion Detection.. - Barford, Jha, Yegneswara (2004)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC