Countrywide virtual siege in the new era of cyberwarfare: remedies from the cyber-firewall: Seddulbahir. Issue 1 (2nd January 2018)
- Record Type:
- Journal Article
- Title:
- Countrywide virtual siege in the new era of cyberwarfare: remedies from the cyber-firewall: Seddulbahir. Issue 1 (2nd January 2018)
- Main Title:
- Countrywide virtual siege in the new era of cyberwarfare: remedies from the cyber-firewall: Seddulbahir
- Authors:
- Sari, Arif
- Abstract:
- ABSTRACT: This research details a country-wide cyber-attack and proposes a cyber-firewall called 'Seddulbahir' to defend against future attacks. The country-wide dual-phased cyber-attack scenario includes two separate phases. First, the attack spreads the malicious malware and second it creates botnets to generate malicious traffic from local subnets against the country's DNS servers to disrupt internet connections and the communication infrastructure of the country. This research paper simulates and exposes the impact of one of the most popular National Security Agency (NSA)'s leaked tools called the FuzzBunch toolkit that can spread a proposed malware within a country's local subnets and networks. The proposed national cyber firewall named 'Seddulbahir' will be used by the Cyber Emergency Response Team (CERT) to detect malicious traffic and clear proposed malware from the subnets through Network Address Translation (NAT) maps and prevent a botnet attack to protect against disruption of DNS servers and country's communication infrastructure. The simulation results show that a country-wide cyber-attack would have a significant effect on DNS, HTTP response time, server CPU utilization, and link utilization metrics on communication servers. The performance results based on these metrics indicated that Seddulbahir mitigated the country-wide cyber-attack significantly and the interference of Seddulbahir (configured on simulation time) kept the CPU utilization level of DNSABSTRACT: This research details a country-wide cyber-attack and proposes a cyber-firewall called 'Seddulbahir' to defend against future attacks. The country-wide dual-phased cyber-attack scenario includes two separate phases. First, the attack spreads the malicious malware and second it creates botnets to generate malicious traffic from local subnets against the country's DNS servers to disrupt internet connections and the communication infrastructure of the country. This research paper simulates and exposes the impact of one of the most popular National Security Agency (NSA)'s leaked tools called the FuzzBunch toolkit that can spread a proposed malware within a country's local subnets and networks. The proposed national cyber firewall named 'Seddulbahir' will be used by the Cyber Emergency Response Team (CERT) to detect malicious traffic and clear proposed malware from the subnets through Network Address Translation (NAT) maps and prevent a botnet attack to protect against disruption of DNS servers and country's communication infrastructure. The simulation results show that a country-wide cyber-attack would have a significant effect on DNS, HTTP response time, server CPU utilization, and link utilization metrics on communication servers. The performance results based on these metrics indicated that Seddulbahir mitigated the country-wide cyber-attack significantly and the interference of Seddulbahir (configured on simulation time) kept the CPU utilization level of DNS servers stable at 4%. This research highlights the importance and necessity of national cyber firewall systems to protect the critical communication infrastructure of the country through this proposed cyber-firewall mechanism. … (more)
- Is Part Of:
- Journal of cyber security technology. Volume 2:Issue 1(2018)
- Journal:
- Journal of cyber security technology
- Issue:
- Volume 2:Issue 1(2018)
- Issue Display:
- Volume 2, Issue 1 (2018)
- Year:
- 2018
- Volume:
- 2
- Issue:
- 1
- Issue Sort Value:
- 2018-0002-0001-0000
- Page Start:
- 14
- Page End:
- 36
- Publication Date:
- 2018-01-02
- Subjects:
- Cyber-attack -- DNS attacks -- Seddulbahir -- national cyber firewall -- NSA -- critical infrastructure
Computer security -- Periodicals
Data encryption (Computer science) -- Periodicals
005.805 - Journal URLs:
- http://www.tandfonline.com/ ↗
- DOI:
- 10.1080/23742917.2018.1476956 ↗
- Languages:
- English
- ISSNs:
- 2374-2917
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 6996.xml