DocumentCode
705722
Title
Preventing Attacks in Real-Time through the Use of a Dummy Server
Author
Bazzi, Ahmad ; Onozato, Yoshikuni
Author_Institution
Grad. Sch. of Eng., Gunma Univ., Gunma, Japan
fYear
2015
fDate
25-27 March 2015
Firstpage
236
Lastpage
241
Abstract
Zero-day exploits against servers pose one of the most challenging problems faced by system and security administrators. Current solutions rely mainly on signature databases of known attacks and are not efficient at detecting new attacks not covered by their attack signature database. We propose using a dummy server, i.e. A mirror of the server to be protected but without the real data. Consequently, any incoming network packet is first tested against the dummy server and once it is ensured that the packet is benign, it is delivered to the real server. This would prevent all types of attacks, including those based on zero-day exploits, from reaching the protected server.
Keywords
program debugging; security of data; attack signature database; dummy server; network packet; zero-day exploits; Databases; IP networks; Intrusion detection; Routing protocols; Servers; Software;
fLanguage
English
Publisher
ieee
Conference_Titel
Autonomous Decentralized Systems (ISADS), 2015 IEEE Twelfth International Symposium on
Conference_Location
Taichung
Print_ISBN
978-1-4799-8260-8
Type
conf
DOI
10.1109/ISADS.2015.36
Filename
7098265
Link To Document