Practical automated detection of stealthy portscans
Top Cited Papers
- 1 January 2002
- journal article
- Published by SAGE Publications in Journal of Computer Security
- Vol. 10 (1-2) , 105-136
- https://doi.org/10.3233/jcs-2002-101-205
Abstract
Portscan detectors in network intrusion detection products are easy to evade. They classify a portscan as more than N distinct probes within M seconds from a single source. This paper begins with an analysis of the scan detection problem, and then prKeywords
This publication has 0 references indexed in Scilit: