Scraping, Denial of Service, and Brute Force Attacks! Oh My!: Identifying and Controlling Automated Clients

Date Added: Jul 2009
Format: PDF

Anti-Automation defenses are critical in today's web application security landscape. Breach Security's product line is uniquely positioned to help organizations address these automated types of attacks. Only through the combination of all of these capabilities can organizations gain true protections against these threats. Many systems will allow the use of weak passwords or cryptographic keys, and users will often choose easy to guess passwords, possibly found in a dictionary. Given this scenario, an attacker would cycle though the dictionary word by word, generating thousands or potentially millions of incorrect guesses search for the valid password. When a guessed password allows access to the system, the brute force attack has been successful and the attacker is able access the account.