以作者查詢圖書館館藏

、以作者查詢臺灣博碩士

、以作者查詢全國書目

、勘誤回報

、線上人數：158

、訪客IP：3.15.34.233

姓名	何雋永(Chun-Yung Ho)  查詢紙本館藏	畢業系所	資訊工程學系
論文名稱	ALP：一種在保持帳戶鎖定的同時解決帳 戶拒絕服務攻擊的解決方案 (ALP: A Solution Solving Account Denial-of-Service while Maintaining Account Lock)
相關論文	★ USB WORM KILLER: Cure USB Flash Worms Through a USB Flash Worm ★ Discoverer- Rootkit即時偵測系統 ★ 一項Android手機上詐騙簡訊的偵測與防禦機制 ★ SRA系統防禦ARP欺騙劫持路由器 ★ A Solution for Detecting and Defending ARP Spoofing on Virtual Machines ★ 針對遠端緩衝區溢位攻擊之自動化即時反擊系統 ★ 即時血清系統: 具攻性防壁之自動化蠕蟲治癒系統 ★ DNSPD: Entrap Botnets Through DNS Cache Poisoning Detection ★ TransSQL: A Translation and Validation-based Solution for SQL-Injection Attacks ★ A Spam Mail-based Solution for Botnet Detection and Network Bandwidth Protection ★ Shark: Phishing Information Recycling from Spam Mails ★ FFRTD: Beat Fast-Flux by Response Time Differences ★ Antivirus Software Shield against Antivirus Terminators ★ MAC-YURI : My ACcount, YoUr ResponsIbility ★ KKBB: Kernel Keylogger Bye-Bye ★ CIDP Treatment: An Innovative Mobile Botnet Covert Channel based on Caller IDs with P8 Treatment
檔案	[Endnote RIS 格式]    [Bibtex 格式]    [相關文章]   [文章引用]   [完整記錄]   [館藏目錄]   至系統瀏覽論文 (2029-6-30以後開放)
摘要(中)	使用帳戶密碼進行驗證的登入方式廣泛應用於各種應用程式。 然而，攻擊者可能通過自動化腳本對應用程序進行暴力破解攻擊。 為了防止帳戶被惡意攻擊者破解並導致帳戶被接管，大多數應用程 式都採取了帳戶鎖定政策。然而，帳戶鎖定政策也可能被用於阻斷 服務攻擊，導致合法使用者無法訪問自己的帳戶。 現有的解鎖方式在面對持續的帳戶阻斷服務攻擊時往往無法有 效防範，甚至在 SSH 上也缺乏相關的解鎖方式。因此，需要一個解 決方案，既能讓使用者正常訪問帳戶，又能保護使用者免於帳戶被 反覆鎖定的風險。 在這篇論文中，我們提出 ALP 來保護系統避免同時受到密碼破 解和帳戶 DoS 攻擊。
摘要(英)	Password-based authentication is widely used in various applications. However, attackers may use automated scripts to perform brute force attacks on these applications. To prevent accounts from being compromised by malicious attackers, most applications implement account lockout policies. However, these account lockout policies can also be exploited for Denial-of-Service attacks, preventing legitimate users from accessing their accounts. Existing unlock mechanisms are often ineffective against sustained account lockout attacks and are even absent for services like SSH. Therefore, a solution is needed that allows users to access their accounts normally while protecting them from the risk of repeated account lockouts. In this paper, we propose Account Lock Protector (ALP) to defend a system against password cracking and account DoS simultaneously.
關鍵字(中)	★ 帳戶鎖定 ★ 阻斷服務攻擊	關鍵字(英)	★ account lockout ★ Denial-of-Service
論文目次	目錄 中文摘要..................................................................................................... i Abstract...................................................................................................... ii 目錄........................................................................................................... iii 圖目錄.........................................................................................................v 第 1 章 緒論 ...........................................................................................1 第 2 章 背景介紹 ...................................................................................4 2.1 帳戶安全.................................................................................................................. 4 2.2 帳戶鎖定政策.......................................................................................................... 5 2.3 帳戶恢復機制.......................................................................................................... 7 2.4 Secure Shell.............................................................................................................. 8 2.5 可插拔身分驗證模組............................................................................................ 10 第 3 章 相關研究 .................................................................................12 第 4 章 系統架構與實作 .....................................................................14 4.1 設計目標................................................................................................................ 14 4.2 設計概念................................................................................................................ 15 4.3 系統架構................................................................................................................ 16 4.4 系統元件................................................................................................................ 18 第 5 章 實驗結果及分析 .....................................................................21 5.1 實驗環境................................................................................................................ 21 5.2 功能測試................................................................................................................ 22 5.3 效能測試................................................................................................................ 25 iv 第 6 章 討論 .........................................................................................27 6.1 電子郵件安全性.................................................................................................... 27 6.2 中間人攻擊 (MITM) ............................................................................................. 27 第 7 章 結論 .........................................................................................28 第 8 章 參考資料 .................................................................................29
參考文獻	[1] SSH https://medium.com/quick-code/how-ssh-works-9349293cdf61 [2] Blocking Brute Force Attacks https://owasp.org/wwwcommunity/controls/Blocking_Brute_Force_Attacks [3] PMA https://community.cloudera.com/t5/CommunityArticles/Understanding-Security-basic-for-dummies/ta-p/247315 [4] account lockout policy https://activedirectorypro.com/accountlockout-policy [5] Michael R. Bartolacci, Larry J. LeBlanc, Ashley Podhradsky "Personal Denial of Service (PDOS) Attacks: A Discussion and Exploration of a New Category of Cyber Crime Exploration" 2014. [6] K. Anushka, Chamantha, A. P. Karunaweera, P. R. Priyashantha, H. D. R. Wickramasinghe, W. A. V. M. G. Wijethunge "Case study on exploitation, detection and prevention of user account DoS through Advanced Persistent Threats" 1 Aug 2015. [7] Phuong M. Cao, Yuming Wu, and Subho S. Banerjee "CAUDIT: Continuous Auditing of SSH Servers To Mitigate Brute-Force Attacks" 26-28 Feb 2019. [8] Yu Liu, Matthew R. Squires, Curtis R. Taylor "Account Lockouts: Characterizingand Preventing Account Denial-of-Service Attacks," 11 December 2019 [9] Marina Sanusi Bohuk, Mazharul Islam, Suleman Ahmad, Cloudflare "Gossamer: Securely Measuring Password-based Logins" 10-12 Aug 2022. [10] Sachin Kumar Singh and Shreeman Gautam "Where The Wild Things Are: Brute-Force SSH Attacks In The Wild And How To Stop Them" 16-18 Apr 2024. [11] Y. Yang, K. C. Yeo, S. Azam, A. Karim, R. Ahammad, and R. Mahmud "Empirical study of password strength meter design" 2020 Mahmud "Empirical study of password strength meter design" 2020 [12] AKIN ALKAN "Analysis of Failed SSH Attempts for Intrusion Detection" 2024
指導教授	許富皓(Fu-Hau Hsu)	審核日期	2024-7-22
推文	facebook   plurk   twitter   funp   google   live   udn   HD   myshare   reddit   netvibes   friend   youpush   delicious   baidu
網路書籤	Google bookmarks   del.icio.us   hemidemi   myshare