Analysis and Response of SSH Brute Force Attacks in Multi-User Computing Environment

Jae Kook Lee; Sung Jun Kim; Joon Woo; Chan Yeol Park

Analysis and Response of SSH Brute Force Attacks in Multi-User Computing Environment

KIPS Transactions on Computer and Communication Systems, Vol. 4, No. 6, pp. 205-212, Jun. 2015

10.3745/KTCCS.2015.4.6.205, PDF Download:

Abstract

SSH provides a secure, encrypted communication channel between two end point systems using public key encryption. But SSH brute force attack is one of the most significant attacks. This kind of attack aims to login to the SSH server by continually guessing a large number of user account and password combinations. In this paper, we analyze logs of SSH brute force attacks in 2014 and propose a failed-log based detection mechanism in high performance computing service environment.

Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

J. K. Lee, S. J. Kim, J. Woo, C. Y. Park, "Analysis and Response of SSH Brute Force Attacks in Multi-User Computing Environment," KIPS Transactions on Computer and Communication Systems, vol. 4, no. 6, pp. 205-212, 2015. DOI: 10.3745/KTCCS.2015.4.6.205.

[ACM Style]

Jae Kook Lee, Sung Jun Kim, Joon Woo, and Chan Yeol Park. 2015. Analysis and Response of SSH Brute Force Attacks in Multi-User Computing Environment. KIPS Transactions on Computer and Communication Systems, 4, 6, (2015), 205-212. DOI: 10.3745/KTCCS.2015.4.6.205.