Erweiterte
Suche ›

Vulnerability Analysis and Defense for the Internet

von
Springer US,
Buch
149,79 € Lieferbar in 5-7 Tagen
Dieses Produkt ist auch verfügbar als:

Kurzbeschreibung

Vulnerability Analysis and Defense for the Internet provides packet captures, flow charts and pseudo code, which enable a user to identify if an application/protocol is vulnerable. This edited volume also includes case studies that discuss the latest exploits.

Details
Schlagworte
Hauptbeschreibung

Titel: Vulnerability Analysis and Defense for the Internet
Autoren/Herausgeber: Abhishek Singh (Hrsg.)
Weitere Mitwirkende: B. Singh, H. Joseph
Aus der Reihe: Advances in Information Security
Ausgabe: 2008

ISBN/EAN: 9780387743899

Seitenzahl: 254
Format: 23,5 x 15,5 cm
Produktform: Hardcover/Gebunden
Gewicht: 1,230 g
Sprache: Englisch

Vulnerability Analysis is a process that defines, identifies, and classifies the vulnerabilities in a computer network or an application. Vulnerability in a network or application can in turn be used to launch various attacks like cross-site scripting attacks, SQL injection attacks, format string attacks, buffer overflows, DNS amplification attacks etc. Although these attacks are not new and are well known, the number of vulnerabilities disclosed to the public jumped nearly 5 percent during the first six months of 2007. This accounts to be the fourth year report, which shows the raise in vulnerability (see the news link on security focus http://www.securityfocus.com/brief/614). In January 2007, a vulnerable network resulted in a theft of 45.6 million credit card numbers in TJX companies due to unauthorized intrusion. A good protocol analysis and effective signature writing is one of the - fective method to prevent vulnerability and minimize the chances of intrusion in the network. However, protocol analysis poses two challenges namely false po- tive and evasion. If the signature to prevent the vulnerability is not written pr- erly, it will result in dropping of a valid traffic thereby resulting in false positive. An effective signature should also consider the chances of evasion; otherwise a malicious attacker can use the variant of exploit and evade the protection provided by the IDS/IPS.

buchhandel.de - Newsletter
Möchten Sie sich für den Newsletter anmelden?


Bitte geben Sie eine gültige E-Mail-Adresse ein.
Lieber nicht