[Dailydave] Denial of Service via Algorithmic Complexity
Tal Garfinkel
talg at stanford.edu
Wed Apr 23 13:26:03 EDT 2008
There has been some work done on the issue that dave mentioned about
exploiting the complexity of certain program operations
for efficient denial of service by Scott Crosby and Dan Wallach from Rice.
They looked at how this type of attack could be
used against the Bro IDS, among other things... you can check out their
Usenix Security paper, example code, and pointers
to related work here.
http://www.cs.rice.edu/~scrosby/hash/
Cheers,
Tal
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.immunitysec.com/pipermail/dailydave/attachments/20080423/83034ef5/attachment.htm
More information about the Dailydave
mailing list