Distributed Analysis of SSH Brute Force and Dictionary Based Attacks

Author

Joshua Faust, St. Cloud State UniversityFollow

Date of Award

5-2018

Culminating Project Type

Thesis

Degree Name

Information Assurance: M.S.

Department

Information Assurance and Information Systems

College

Herberger School of Business

First Advisor

Susantha Herath

Second Advisor

Dennis Guster

Third Advisor

Jie Meichsner

Creative Commons License

This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.

Keywords and Subject Headings

Distributed Systems, Honeypot, Brute Force Attack, Dictionary Attack, Distributed Analysis, Geographical Analysis

Abstract

When designing and implementing a new system, one of the most common misuse cases a system administrator or security architect anticipates is the fact that their system will be attacked with brute force and dictionary-based methods. These attack vectors are commonplace and as such, common defenses have been designed to help mitigate a successful attack. However, the common defenses employed are anticipated and mitigated by even the most novice of attackers. In order to better understand that nature and evolution of brute-force and dictionary attacks, research needs to evaluate the progression of the attack vectors as well as new variables to identify the risk of systems. The research that follows is designed to look at brute force and dictionary-based attacks from a geographical standpoint. Specifically, the data gathered will be analyzed to define attack anomalies based on date, time, location, operating system, and attacking clients in order to ascertain if such variables are viable attack indication markers for defense purposes.

Recommended Citation

Faust, Joshua, "Distributed Analysis of SSH Brute Force and Dictionary Based Attacks" (2018). Culminating Projects in Information Assurance. 56.
https://repository.stcloudstate.edu/msia_etds/56