Part of the Attack.tex database ()

Focused On Your Success

The All.Net Security Database

Generated Fri Jun 27 09:58:50 PDT 2003 by fc@red.a.net

Cause/Mechanism: Threat Profiles Attack Methods Defense Methods Process: Prevention Detection Reaction Impact: Integrity Availability Confidential Use Control	Other: Risk Management Database Description Domain: Physical Informational Systemic Sophistication: Theoretical Demonstrated Widespread	Perspectives: Management Policy Standards Procedures Documentation Audit Testing Technical Safeguards Personnel Incident Handling Legal Physical Awareness Training Education Organization
Brekne's Mechanistic: Input Output Storage Processing Transmission	Brekne's Causal: Accidental Malicious	Brekne's Method: Leakage Masquerade Denial Corruption Usage Mental

Attack73:

Name:distributed coordinated attacks

A set of attackers use a set of vulnerable intermediary systems to attack a set of victims. Examples include a Web-based attack causing thousands of browsers used by users at sites all around the world to attack a single victim site, a set of simultaneous attacks by a coordinated group of attackers to try to overwhelm defenses, and an attack where thousands of intermediaries were fooled into trying to gain access to a victim site. Complexity: Devising DCAs appears to be simple while tracing a DCA to a source can be quite complex. Early results indicate that tracking a DCA to a source is exponential in the number of intermediaries involved, while detecting a high-volume DCA appears to be straightforward.

fc@red.a.net

Related Database Material

[TBVTransmission - Relates to Transmission]
[TBVMalicious - Relates to Malicious]
[TBVmasQuerade - Relates to masQuerade]
[TBVUsage - Relates to Usage]
[PDRAvailability - Relates to Availability]
[PDRDemonstrated - Relates to Demonstrated]
[PLSSystemic - Relates to Systemic]
[Threat7 - Fraudsters]
[Threat10 - hackers]
[Threat11 - crackers]
[Threat13 - cyber-gangs]
[Threat14 - tiger teams]
[Threat19 - activists]
[Threat20 - crackers for hire]
[Threat28 - government agencies]
[Threat29 - infrastructure warriors]
[Threat30 - economic rivals]
[Threat31 - nation states]
[Threat32 - global coalitions]
[Threat33 - military organizations]
[Threat35 - information warriors]
[Threat36 - extortionists]
[Defense54 - accountability]
[Defense131 - adversary principle (GASSP)]
[Defense30 - audit analysis]
[Defense35 - awareness of implications]
[Defense33 - capture and punishment]
[Defense99 - deceptions]
[Defense13 - detection before failure]
[Defense87 - disable unsafe features]
[Defense6 - feeding false information]
[Defense65 - increased or enhanced perimeters]
[Defense67 - jamming]
[Defense86 - limited transitivity]
[Defense69 - path diversity]
[Defense98 - perception management]
[Defense70 - quad-tri-multi-angulation]
[Defense16 - redundancy]
[Defense26 - rerouting attacks]
[Defense4 - sensors]
[Defense20 - temporary blindness]
[Defense125 - time, location, function, and other similar access limitations]
[Defense106 - tracking, correlation, and analysis of incident reporting and response information]