Abstract
We propose a model for using firewall log entries of denied inbound Internet traffic for indirect discovery of local IP addresses that have security problems. This method is used successfully to discover two computers on the network of Southern Illinois University which were infected with malicious feral software, as well as two more IP addresses on the university network with other security problems.
| Original language | English |
|---|---|
| Title of host publication | 2008 IEEE International Performance Computing and Communications Conference, IPCCC 2008 |
| Pages | 486-490 |
| Number of pages | 5 |
| DOIs | |
| State | Published - 1 Dec 2008 |
| Event | 2008 IEEE International Performance Computing and Communications Conference, IPCCC 2008 - Austin, TX, United States Duration: 7 Dec 2008 → 9 Dec 2008 |
Publication series
| Name | Conference Proceedings of the IEEE International Performance, Computing, and Communications Conference |
|---|
Conference
| Conference | 2008 IEEE International Performance Computing and Communications Conference, IPCCC 2008 |
|---|---|
| Country | United States |
| City | Austin, TX |
| Period | 7/12/08 → 9/12/08 |
Fingerprint Dive into the research topics of 'A model to use denied Internet traffic to indirectly discover internal network security problems'. Together they form a unique fingerprint.
Cite this
Langin, C., Zhou, H., & Rahimi, S. (2008). A model to use denied Internet traffic to indirectly discover internal network security problems. In 2008 IEEE International Performance Computing and Communications Conference, IPCCC 2008 (pp. 486-490). [4745091] (Conference Proceedings of the IEEE International Performance, Computing, and Communications Conference). https://doi.org/10.1109/PCCC.2008.4745091