Publication Details
Detection of Network Buffer Overflow Attacks: A Case Study
BARABAS Maroš, HANÁČEK Petr, HOMOLIAK Ivan and KAČIC Matej. Detection of Network Buffer Overflow Attacks: A Case Study. In: The 47th Annual International Carnahan Conference on Security Technology. Mendellin: Institute of Electrical and Electronics Engineers, 2013, pp. 128-131. ISBN 978-958-8790-65-7.
Czech title
Detekce síťových útoků na principu přetečení zásobníku: Případová studie
Type
conference paper
Language
english
Authors
Barabas Maroš, Ing., Ph.D. (DITS FIT BUT)
Hanáček Petr, doc. Dr. Ing. (DITS FIT BUT)
Homoliak Ivan, Ing., Ph.D. (DITS FIT BUT)
Kačic Matej, Ing., Ph.D. (DITS FIT BUT)
Hanáček Petr, doc. Dr. Ing. (DITS FIT BUT)
Homoliak Ivan, Ing., Ph.D. (DITS FIT BUT)
Kačic Matej, Ing., Ph.D. (DITS FIT BUT)
Keywords
buffer overflow, detection, ids, network metrics
Abstract
This paper presents an automated detection method based on classification of network traffic using predefined set of network metrics. We proposed the set of metrics with focus on behavior of buffer overflow attacks and their sufficient description without the need of deep packet inspection. In this paper we describe two laboratory experiments of automated detection of buffer overflow attacks on vulnerable network services and their description by proposed set of network metrics. We present the principles of several chosen network metrics and their application on experimental attacks according to their nature in comparison to valid communication.
Published
2013
Pages
128-131
Proceedings
The 47th Annual International Carnahan Conference on Security Technology
Conference
47th INTERNATIONAL CARNAHAN CONFERENCE ON SECURITY TECHNOLOGY 2013, Medellín, CO
ISBN
978-958-8790-65-7
Publisher
Institute of Electrical and Electronics Engineers
Place
Mendellin, CO
BibTeX
@INPROCEEDINGS{FITPUB10321,
author = "Maro\v{s} Barabas and Petr Han\'{a}\v{c}ek and Ivan Homoliak and Matej Ka\v{c}ic",
title = "Detection of Network Buffer Overflow Attacks: A Case Study",
pages = "128--131",
booktitle = "The 47th Annual International Carnahan Conference on Security Technology",
year = 2013,
location = "Mendellin, CO",
publisher = "Institute of Electrical and Electronics Engineers",
ISBN = "978-958-8790-65-7",
language = "english",
url = "https://www.fit.vut.cz/research/publication/10321"
}
Files