Shopping Cart | Login | Register | Language: English

Learn more about our database collections, set up a free trial, or request a quote.

InfoSci-Books InfoSci-Journals InfoSci-Cases InfoSci-Dictionary
Overview Start building your own custom collection
Books and Journals InfoSci-OnDemand

InfoSci-Business & Management IS&T InfoSci-Computer Science & IT InfoSci-Educational IS&T InfoSci-Engineering IS&T InfoSci-Environmental IS&T InfoSci-Government IS&T InfoSci-Library IS&T InfoSci-Media & Communication IS&T InfoSci-Medical, Healthcare, & Life IS&T InfoSci-Security & Forensic IS&T InfoSci-Social Sciences & Online Behavior

Business, Administration, and Management Communications, Social Science, and Healthcare Library Science, Information Studies, and Education Science, Engineering, and Information Technology
Business, Administration, and Management Communications and Social Science Computer Science, Security, and Information Technology Engineering, Natural, and Physical Science Library Science, Information Studies, and Education Medicine, Healthcare, and Life Science

VIDEOS

OnDEMAND

TOPIC COLLECTIONS

MEDIA

Newsroom New Title Releases Press Releases

Upcoming Symposiums Symposium Archive

Browse All Catalogs

Toward More Resilient Cyber Infrastructure: A Practical Approach

Biljana Tanceska (Ministry of Defense, Macedonia), Mitko Bogdanoski (Military Academy “General Mihailo Apostolski”, Macedonia) and Aleksandar Risteski (University Ss. Cyril and Methodius, Macedonia)

OnDemand Chapter PDF Download Download link provided immediately after order completion	$30.00 List Price: $37.50
Current Promotions: 20% Online Bookstore Discount*

Available. Instant access upon order completion.

Source title: Handbook of Research on Civil Society and National Security in the Era of Cyber Warfare

DOI: 10.4018/978-1-4666-8793-6.ch015|

Cite Chapter

MLA

Tanceska, Biljana, Mitko Bogdanoski and Aleksandar Risteski. "Toward More Resilient Cyber Infrastructure: A Practical Approach." Handbook of Research on Civil Society and National Security in the Era of Cyber Warfare. IGI Global, 2016. 305-351. Web. 4 Nov. 2015. doi:10.4018/978-1-4666-8793-6.ch015

APA

Tanceska, B., Bogdanoski, M., & Risteski, A. (2016). Toward More Resilient Cyber Infrastructure: A Practical Approach. In M. Hadji-Janev, & M. Bogdanoski (Eds.) Handbook of Research on Civil Society and National Security in the Era of Cyber Warfare (pp. 305-351). Hershey, PA: Information Science Reference. doi:10.4018/978-1-4666-8793-6.ch015

Chicago

Tanceska, Biljana, Mitko Bogdanoski and Aleksandar Risteski. "Toward More Resilient Cyber Infrastructure: A Practical Approach." In Handbook of Research on Civil Society and National Security in the Era of Cyber Warfare, ed. Metodi Hadji-Janev and Mitko Bogdanoski, 305-351 (2016), accessed November 04, 2015. doi:10.4018/978-1-4666-8793-6.ch015

Export Reference

Sample PDF Favorite

Toward More Resilient Cyber Infrastructure: A Practical Approach

Abstract | Chapter Preview | Complete Chapter List | Key Terms in this Chapter

Access on Platform

Recommend

Send to a librarian Send to a colleague

Available In

Advances in Digital Crime, Forensics, and Cyber Terrorism InfoSci-Books InfoSci-Security and Forensic Science and Technology Science, Engineering, and Information Technology

Browse by Subject

Business IS&T Business IS&T Topics Accounting & Finance Administration & Leadership Business & Organizational Research Business Information Systems Business Intelligence Business Process Management Consumer Management Decision Support Systems E-Business E-Commerce Economics & Economic Theory Electronic Services Enterprise Information Systems Enterprise Resource Planning Entrepreneurship & E-Innovation Global Business Hospitality, Travel & Tourism Management Human Aspects of Business Human Resources Development Industrial Informatics Management Science Marketing Outsourcing Professional Development Risk Management & Analysis Small & Medium Enterprises Supply Chain Management
Computer Science & IT Computer Science & IT Topics Adaptive & Complex Systems Agent Technologies Algorithms Artificial Intelligence Cloud Computing Cognitive Informatics Collective Intelligence Computational Intelligence Computational Linguistics Computer Simulation Computer Vision & Image Processing End User Computing Global Information Technology Grid & High Performance Computing Internet Technologies IT Policy & Standardization Nanotechnology Neural Networks Open Source Software Portal Technologies Robotics Semantic Web Sensor Technologies Strategic Information Systems Systems & Software Design Ubiquitous & Pervasive Computing Web Technologies & Engineering
Educational IS&T Educational IS&T Topics Adult Learning Applied E-Learning Blended & Mobile Learning Business & Technical Education Cognitive Learning Computer-Assisted Language Learning Distance Education Educational Technologies Engineering Education Higher Education Instructional Design K-12 Education Surveys, Measurements & Response Systems Teacher Education Technologies in Higher Education Technologies in K-12 Education Virtual Learning Environments Web-Based Teaching & Learning
Engineering IS&T Engineering IS&T Topics Aerospace Engineering Chemical Engineering Civil Engineering Computer Engineering Data Modeling Languages Electrical Engineering Industrial Engineering Materials Science Mechanical Engineering Object-Oriented Design Petroleum & Natural Gas Engineering
Environmental IS&T Environmental IS&T Topics Environmental Engineering Environmental Technologies Geoinformatics Sustainable Development
Library IS&T Library IS&T Topics Data Analysis & Statistics Data Mining Data Warehousing Databases Digital Libraries Digital Literacy Information Resources Management Information Retrieval Information Value & Quality IT Governance IT Research & Theory Knowledge Discovery Knowledge Management Library Information Systems
Media & Communication IS&T Media & Communication IS&T Topics Computer Graphics & Art Computer-Mediated-Communication Cybernetics Digital Communications E-Collaboration Gaming Interactive Technologies Language Studies Mobile Computing Multimedia Technology Music Technologies Networking Social Networking Telecommunications Virtual Communities & Virtual Reality Web Services Wireless Systems
Medical & Healthcare IS&T Medical & Healthcare IS&T Topics Assistive Technologies Bioinformatics Biologically-Inspired Computing Biomedical Technologies Biometrics Chemoinformatics Clinical Technologies Health Information Systems Healthcare Administration Medical Technologies Pharmaceutical Technologies Public Health & Healthcare Delivery
Government IS&T Government IS&T Topics Digital Divide & Developing Countries Electronic Government Emergency & Disaster Management Policy & Reform Public & Sector Management Urban & Regional Development
Security & Forensic IS&T Security & Forensic IS&T Topics Cyber Warfare & Terrorism Digital Crime & Forensics Ethics & Law Information Ethics Information Security & Privacy Information Trust
Social Sciences & Online Behavior Social Sciences & Online Behavior Topics Culture & Population Studies Cyber Behavior Gender & Technology Human Aspects of Technology Human-Computer Interaction Knowledge Society Political Science Religious Studies

Top

Abstract

In this chapter, an analysis of security attacks on network elements along with the appropriate countermeasures is presented. The main goal of this chapter is to present the practical execution of various security attacks and their mitigation techniques due to more resilient cyber infrastructure. The network topology that has been attacked is designed in GNS3 software tool installed on Windows operating system, while the attacks are performed in Kali Linux operating system. Three groups of security attacks (Denial of Service, Man in the Middle, and Control Plane attacks) are observed in simulation scenarios with a detailed analysis on each of them, followed by a presentation of practical performance and ways of prevention (protection) against the attacks.

Chapter Preview

Top

Introduction

In less than a generation, the electronic neighborhood called the Internet has established itself as the connection mechanisms bringing individuals, governments, corporations, colleges/universities, and other entities into a truly global system. This mechanism has affected political, economic, social, and educational interactions in a way that has produced significant benefits. However, when it comes to knowing how to cost - effectively protect the cyber infrastructure and the information that flows through it, we are all in uncharted territory (Kreitner, 2009). Malicious users are constantly looking for weaknesses and ways to disrupt the normal functioning of a given network, thereby causing damage by stealing or modifying the information or by making a service unavailable to its legitimate users. This is why internet security is an essential feature for managers and administrators of all networks. After experiencing considerable financial and technological damage in recent years and after knowing that even extremely powerful companies such as Google, Microsoft, Facebook, Yahoo, has suffered of various complex security violations, the main question of every company is: How can we protect ourselves from a security violation?

The main aim of this chapter is to give some realistic and effective answers to these questions so we can effectively protect the network topology and its network elements from a security violation by analyzing some of the attacks that individuals or corporations are dealing with on a daily basis, or in resume to find an effective way toward more resilient cyber infrastructure. The purpose of this chapter is concluded (completed) using a theoretical and practical analysis of some of the before mentioned security attacks, followed by their appropriate countermeasures. To better understand the consequences and likelihood of such security disruptions, we put ourselves in the attacker’s role. In this way the awareness of the vulnerabilities of the network infrastructure increases. And if the vulnerabilities are well-know, the effective way of mitigation is very easy to find and implement.

Before performing a theoretical and practical analysis of the security attacks, in the first section the purpose of implementing various internet security mechanisms and internet security policing will be explained. Then the term security attack will be defined presenting the division of the entire set of attacks on three groups that perfectly suit the chapter’s goal. Knowing that the main goal of every malicious user (attacker) is to either perform a denial of service to the victim, or to steal information from the legitimate users, the entire set of security attacks in this chapter will be divided as follows:

1.
Denial-of-service attack.
2.
Man-in-the-middle attack.
3.
Control plane attack.

From the first group of security attacks given above, a theoretical and practical analysis of a DHCP (Dynamic Host Configuration Protocol) Starvation attack will be presented. ARP (Address Resolution Protocol) Poisoning and DHCP Starvation with Rogue server are the security attacks that are chosen to be analyzed from the second group of security attacks - Man-in-the-middle attack. And finally, from the third group of security attack - Control plane attacks, the CDP (Cisco Discovery Protocol) Flooding attack will be theoretically and practically analyzed. The first section will be concluded with a detailed theoretical analysis of the previously mentioned three groups of security attacks, and ways to prevent from their malicious influence.

In order to provide more realistic analysis of the security attacks GNS3 - based network topology will be implemented. The GNS3 simulation tool is chosen because is an open source software that simulate complex networks while being as close as possible to the way the real networks perform. All of this without having a dedicated network hardware such as routers and switches. In short GNS3 is an excellent alternative tool to real labs for network engineer administrators and people studying for certifications. This network topology along with its network elements and their configuration techniques will be presented in the second section of the chapter.

In the third section, a detailed theoretical analysis of the following security attacks will be presented:

1.
Theoretical analysis of DHCP Starvation with Rogue server attack.
2.
Theoretical analysis of ARP Poisoning attack.
3.
Theoretical analysis of CDP Flooding attack.

Top

Complete Chapter List

Search this Book: Reset

Table of Contents

View Full PDF

Foreword

Petar Popovski

View Full PDF

Preface

Metodi Hadji-Janev, Mitko Bogdanoski

View Full PDF

Chapter 1

Cyber Warfare, Asymmetry, and Responsibility: Considerations for Defence Theorem (pages 1-21)

Jai Galliott