Scribd Logo
Upload

Welcome to Scribd!

  • Chapter 7 Exercise

    Uploaded by

    Ho Phuoc Hoang Gia
    10 views1 page
    Computer Security

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Computer Security

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    10 views1 page

    Chapter 7 Exercise

    Uploaded by

    Ho Phuoc Hoang Gia
    Computer Security

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 1

    IT Security

    Gia Ho
    100115898
    Chapter 7

    7.1 A denial-of-service attack is an attempt to compromise availability by hindering or blocking completely the
    provision of some service. By that, the authorized users cannot access the system.

    7.6 The attacker by exploiting the flaw in the operating system or application to gain control over agents. Large
    collection of such systems under control of attackers can be created, collectively forming a botnet. A small number of
    systems act as handlers controlling a much larger number of agent systems. The attacker can send a single command
    to a handler, which then automatically forwards it to all the agents under its control, flooding the victim with request.

    7.8 The attacker sends packets to a known service on the intermediary with a spoofed source address of the actual
    target system. When the intermediary responds, the response is sent to the target. This could repeat and create a
    request-respond loop in system.

    7.9 Amplification attacks are a variant of reflector attacks and also involve sending a packet with a spoofed source
    address for the target system to intermediaries. They differ in generating multiple response packets for each original
    packet sent. This can be achieved by directing the original request to the broadcast address for some network.

    7.15 The first step is to identify the type of attack and hence the best approach to defend against it. Typically this
    involves capturing packets flowing into the organization and analyzing them, looking for common attack packet types.
    This may be done by organizational personnel using suitable network analysis tools.

    Next step is installing a suitable filters to block the flow of attack packets. These have to be installed by the ISP
    on its routers. If the attack targets a bug on a system or application, rather than high traffic volumes, then this must be
    identified and steps taken to correct it and prevent future attacks.

    The organization may also wish to ask its ISP to trace the flow of packets back in an attempt to identify their
    source.


    7.1
    Numbers of bit in a attack packet: 500 x 8 = 4,000 bit
    With a 0.5 Mbps link. Number of packet is needed to send: (0.5 x 1024^2)/4000 = 131 packets
    With a 2 Mbps link. Number of packet is needed to send: (2 x 1024^2)/4000 = 525 packets
    With a 10 Mbps link. Number of packet is needed to send: (10 x 1024^2)/4000 = 2622 packets

    You might also like