TY - GEN
T1 - Packet scheduling against stepping-stone attacks with chaff
AU - He, Ting
AU - Venkitasubramaniam, Parvathinathan
AU - Tong, Lang
PY - 2006/1/1
Y1 - 2006/1/1
N2 - We consider scheduling packet transmissions in a network so that the efficiency of stepping-stone attacks can be severely restrained with the help of stepping-stone monitors. We allow the attacker to encrypt and pad the packets, perturb the timing of packets, and insert chaff packets, but the timing perturbation is subject to a maximum delay constraint. We show that if we randomize packet transmissions, then the attacker has to insert a large amount of chaff to evade detection completely. In particular, if all transmissions are scheduled as Poisson processes, then the fraction of attacking packets in the attacker's traffic decreases exponentially with the length of the intrusion path.
AB - We consider scheduling packet transmissions in a network so that the efficiency of stepping-stone attacks can be severely restrained with the help of stepping-stone monitors. We allow the attacker to encrypt and pad the packets, perturb the timing of packets, and insert chaff packets, but the timing perturbation is subject to a maximum delay constraint. We show that if we randomize packet transmissions, then the attacker has to insert a large amount of chaff to evade detection completely. In particular, if all transmissions are scheduled as Poisson processes, then the fraction of attacking packets in the attacker's traffic decreases exponentially with the length of the intrusion path.
UR - http://www.scopus.com/inward/record.url?scp=35148885145&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=35148885145&partnerID=8YFLogxK
U2 - 10.1109/MILCOM.2006.302353
DO - 10.1109/MILCOM.2006.302353
M3 - Conference contribution
SN - 1424406188
SN - 9781424406180
T3 - Proceedings - IEEE Military Communications Conference MILCOM
BT - Military Communications Conference 2006, MILCOM 2006
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - Military Communications Conference 2006, MILCOM 2006
Y2 - 23 October 2006 through 25 October 2006
ER -