Papers
An Application Agnostic Review of Current Spam Filtering Techniques
Mon, 08/27/2007 - 21:54 — DanielThis paper looks at the major spam filtering techniques in current use. In looking at methods both success rates and possible problems with each method are explored. Methods discussed include key word filtering, open relay filtering, open proxy filtering, dial-up filtering, non conforming mailing list filtering, cooperative sharing of spam samples, known spam origin filtering Bayesian filtering, Markovian discrimination, gray listing and challenge response.
Network-Based Intrusion Detection Systems in the Small/Midsize Business
Mon, 08/27/2007 - 20:12 — DanielThis paper reviews the current state of Intrusion Detection Systems (IDS) with a particular emphasis on Network-Based Intrusion Detection systems (NIDS). Many of the topic covered will be applicable for any size business, but issues specific to the Small/Medium Business (SMB) sector are emphasized. The paper covers what an IDS is followed by implementation issues that should be considered when considering an IDS solution.
This paper was originally written in November of 2005. The concepts still hold true today. This article will be a good, no marketing spin, introductory overview of IDS technologies.
Considerations in Choosing a Firewall
Mon, 08/27/2007 - 20:12 — Daniel
This paper looks at the available firewall technologies in current use. Both advantages and disadvantages for each technique are discussed. Techniques reviewed include packet filtering, proxies, stateful inspection and deep packet inspection. Also discussed are combinations of techniques and defense in depth. Along with these factors other important factors such as management interfaces, hardware choices and build verses buy are discussed.
Implementing Snort IDS Using FreeBSD
Mon, 08/27/2007 - 13:03 — DanielThis paper explores the elements involved in implementing a Snort IDS and associated software. The considerations and steps taken in building the IDS are discussed, as are the pitfalls and compromises inherent in the implementation discussed in this paper. This paper should be helpful to anyone considering setting up and IDS for the first time regardless of the final software solution that is chosen.
Voice over IP (VoIP) in the Small and Medium Business
Mon, 08/27/2007 - 12:43 — DanielI finished this paper in November of 2005. The VoIP landscape has changed somewhat in that time but the underlying issues there were true in 2005 still hold true today (August 2007).
The State of Malware
Mon, 08/27/2007 - 07:24 — DanielMalware, broadly defined as any type of malicious and probably secret software, has been an issue in the personal computer (PC) industry since at least the mid 1980s. This paper outlines the current state of malware with an emphasis on non-viral malware such as spyware, adware, worms, Trojan horses, keystroke loggers, dialers, and browser hijackers. Viruses are mentioned only as a comparison point where appropriate. This paper reviews the types and behaviors of malware, infection methods and mitigation techniques.
Spam Filtering Techniques
Mon, 08/27/2007 - 07:01 — DanielThis paper looks at the major spam filtering techniques in current use. In looking at methods both success rates and possible problems with each method are explored. Methods discussed include key word filtering, open relay filtering, open proxy filtering, dial-up filtering, non conforming mailing list filtering, cooperative sharing of spam samples, known spam origin filtering and Bayesian filtering.
I finished this paper in December of 2004 so the most recent techniques of both spammers and spam filters are not covered. Most crucial is the absence of coverage of image spam. Even with the slight age that this article has it will still be valuable to anyone trying to figure out how to minimize the amount of spam coming into their companies.
