'Using An Enhanced Dictionary to Facilitate Auditing Techniques Related to Brute Force SSH and FTP Attacks'

摘要

This paper analyzes the efficiency of security auditing on network user accounts. More specifically, the paper focuses on the drawbacks of traditional network account username and password creation, namely "dictionaries." Most auditing methods will employ dictionaries, which in this case are lists of common user names and passwords, and use them to try and gain access by guessing the account credentials. When these dictionaries are created, they are based on a criterion that weakens passwords. As an alternative, the authors consider a new way to create a network dictionary, focusing on two important elements: default user names and common user name schemes. A user name dictionary emphasizing user name accuracy based on common schemes, used in conjunction with a large password dictionary, reduces the chances of a security breach. The security put in place creates account lockouts, banning the IP addresses of attackers. This auditing method lowers the effectiveness of attacks.