1.) Firewalls

 

2.) Intrusion Detection

Intrusion detection with Snort

Intrusion Detection Systems: A Survey and Taxonomy

 

3. Attacks on TCP

Low-Rate TCP-Targeted Denial of Service Attacks

Distributed Mechanism in Detecting and Defending Against the Low-rate TCP Attack

 

A Look Back at .Security Problems in the TCP/IP Protocol Suite

 

4. D/DoS attacks

A Taxonomy of DDoS Attacks and Defense Mechanisms

Syn Flooding and IP Spoofing

An Analysis of Using Reflectors for Distributed Denial-of-Service Attacks

Inferring Internet Denial-of-Service Activity

A Multifaceted Approach to Understanding the Botnet Phenomenon

 

5. Pushback/ Traceback

Controlling High Bandwidth Aggregates in the Network

Single-Packet IP Traceback

Network Support for IP Traceback

 

6. Overlay layer DoS proposals

SOS: Secure Overlay Services

Mayday: Distributed Filtering for Internet Services

 

7. Network Layer DoS proposals

RFC 2827: Ingress filtering

SYN cookies

Use of Spectral Analysis in Defense Against DoS Attacks

Attacking DDoS at the Source

Botz-4-Sale: Surviving Organized DDoS Attacks That Mimic Flash Crowds

A DoS-limiting Network Architecture

 

8. GTTs and Client Puzzles

Using Graphic Turing Tests To Counter Automated DDoS Attacks

DOS-resistant Authentication with Client Puzzles

 

9. Wireless Security

 

10. Security Issues in IP Multicast

RFC 4609: Protocol Independent Multicast - Sparse Mode (PIM-SM) Mlticast Routing Security Issues and Enhancements

 

11. Authentication

Designing an Authentication System: a dialogue in four scenes

Dos and Don’ts of Client Authentication on the Web

Breaking and Fixing the Needham-Schroeder Public-Key Protocol

 

12. Anonymity

Tor: The Second-Generation Onion Router

Protecting Browser State from Web Privacy Attacks

 

13. Honeypots

Honeypots for Distributed Denial of Service attacks

 

14. Worms

How to 0wn the Interenet in your spare time

A Taxonomy of Computer Worms