spacer spacer

March 23, 2005

Restricting Brute Force Attacks through Resource Metering

NGS Security has released a paper on Anti Brute Force Resource Metering. The premise of the document is that it is possible to restrict web-based application brute force guessing attacks through resource metering.

The authors believe resource metering through client-side computationally intensive tasks provide an alternative strategy in defending web-based application authentication processes against brute force guessing attacks. The premise is that this technique is designed to restrict repetition frequency of data sumissions to an application or host system. By forcing the client to compute a hash that is computationally intensive, you can slow down the attack.

An interesting approach. Happy reading!

Posted by SilverStr at March 23, 2005 07:32 AM | TrackBack
spacer
spacer

gipoco.com is neither affiliated with the authors of this page nor responsible for its contents. This is a safe-cache copy of the original web site.