Monitoring Network Traffic to Detect Stepping-Stone Intrusion

Jianhua Yang; Byong Lee; Stephen S.H. Huang

doi:10.1109/WAINA.2008.30

2008 22nd International Conference on Advanced Information Networking and Applications (AINA 2008)

Monitoring Network Traffic to Detect Stepping-Stone Intrusion

Year: 2008, Pages: 56-61

DOI Bookmark: 10.1109/WAINA.2008.30

Authors

Jianhua Yang
Byong Lee
Stephen S.H. Huang

Abstract

Most network intruders tend to use stepping-stones to attack or to invade other hosts to reduce the risks of being discovered. There have been many approaches that were proposed to detect stepping-stone since 1995. One of those approaches proposed by A. Blum detects stepping-stone by checking if the difference between the number of the send packets of an incoming connection and the one of an out-going connection is bounded. One weakness of this method is in resisting intruders’ evasion, such as chaff perturbation. In this paper, we propose a method based on random walk theory to detect stepping-stone intrusion. Our theoretical analysis shows that the proposed method is more effective than Blum’s approach in terms of resist-ing intruders’ chaff perturbation.

Like what you’re reading?

Already a member?

Get this article FREE with a new membership!

Sniffing and Chaffing Network Traffic in Stepping-Stone Intrusion Detection
2018 32nd International Conference on Advanced Information Networking and Applications Workshops (WAINA)
Detecting Stepping-Stone Connection Using Association Rule Mining
2009 International Conference on Availability, Reliability and Security
A New Model to Detect Stepping-Stone Intrusion
Computer Science and Engineering, International Workshop on
Detecting Stepping-Stone with Chaff Perturbations
Advanced Information Networking and Applications Workshops, International Conference on
RTT-Based Random Walk Approach to Detect Stepping-Stone Intrusion
2015 IEEE 29th International Conference on Advanced Information Networking and Applications (AINA)
Mining Network Traffic Efficiently to Detect Stepping-Stone Intrusion
2012 IEEE 26th International Conference on Advanced Information Networking and Applications
An Algorithm to Detect Stepping-Stones in the Presence of Chaff Packets
2008 14th IEEE International Conference on Parallel and Distributed Systems
Correlating TCP/IP Interactive Sessions with Correlation Coefficient to Detect Stepping-Stone Intrusion
2009 International Conference on Advanced Information Networking and Applications
Detecting Chaff Perturbation on Stepping-Stone Connection
Parallel and Distributed Systems, International Conference on
Resist Intruders' Manipulation via Context-Based TCP/IP Packet Matching
2010 24th IEEE International Conference on Advanced Information Networking and Applications

Monitoring Network Traffic to Detect Stepping-Stone Intrusion

Authors

Abstract

Related Articles