Please use this identifier to cite or link to this item:
https://dspace.iiti.ac.in/handle/123456789/4574
| Title: | POSTER: Distributed SSH Bruteforce Attack Detection with Flow Content Similarity and Login Failure Reputation |
| Authors: | Hubballi, Neminath Tiwari, Namrata Khandait, Pratibha |
| Keywords: | Computer science;Computers;Brute-force attack;Content similarity;Flow charac-teristics;SSH connections;Poisson distribution |
| Issue Date: | 2020 |
| Publisher: | Association for Computing Machinery, Inc |
| Citation: | Hubballi, N., Tiwari, N., & Khandait, P. (2020). POSTER: Distributed SSH bruteforce attack detection with flow content similarity and login failure reputation. Paper presented at the Proceedings of the 15th ACM Asia Conference on Computer and Communications Security, ASIA CCS 2020, 916-918. doi:10.1145/3320269.3405443 |
| Abstract: | In this paper we propose a method to detect distributed bruteforcing by modeling failed login attempts as a Poisson probability distribution. We use content similarity between known SSH connection and flow characteristics of failed login attempts to attribute a flow to SSH application and subsequently either as failure or success. Using the failed login count in a window time, we label window as either normal or containing bruteforce attempts. © 2020 Owner/Author. |
| URI: | https://doi.org/10.1145/3320269.3405443 https://dspace.iiti.ac.in/handle/123456789/4574 |
| ISBN: | 9781450367509 |
| Type of Material: | Conference Paper |
| Appears in Collections: | Department of Computer Science and Engineering |
Files in This Item:
There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
Altmetric Badge: