A quick-response real-time stepping stone detection scheme

Ping Li*, Wanlei Zhou, Yanli Yu

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

1 Citation (Scopus)

Abstract

Stepping stone attacks are often used by network intruders to hide their identities. To detect and block stepping stone attacks, a stepping stone detection scheme should be able to correctly identify a stepping-stone in a very short time and in real-time. However, the majority of past research has failed to indicate how long or how many packets it takes for the monitor to detect a stepping stone. In this paper, we propose a novel quick-response real-time stepping stones detection scheme which is based on packet delay properties. Our experiments show that it can identify a stepping stone within 20 seconds which includes false positives and false negatives of less than 3%.

Original languageEnglish
Title of host publicationProceedings - 2010 12th IEEE International Conference on High Performance Computing and Communications, HPCC 2010
Pages677-682
Number of pages6
DOIs
Publication statusPublished - 2010
Externally publishedYes
Event2010 12th IEEE International Conference on High Performance Computing and Communications, HPCC 2010 - Melbourne, VIC, Australia
Duration: 1 Sept 20103 Sept 2010

Publication series

NameProceedings - 2010 12th IEEE International Conference on High Performance Computing and Communications, HPCC 2010

Conference

Conference2010 12th IEEE International Conference on High Performance Computing and Communications, HPCC 2010
Country/TerritoryAustralia
CityMelbourne, VIC
Period1/09/103/09/10

Fingerprint

Dive into the research topics of 'A quick-response real-time stepping stone detection scheme'. Together they form a unique fingerprint.

Cite this