{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,20]],"date-time":"2026-03-20T16:03:40Z","timestamp":1774022620743,"version":"3.50.1"},"publisher-location":"Cham","reference-count":18,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319299372","type":"print"},{"value":"9783319299389","type":"electronic"}],"license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016]]},"DOI":"10.1007\/978-3-319-29938-9_6","type":"book-chapter","created":{"date-parts":[[2016,3,8]],"date-time":"2016-03-08T10:42:49Z","timestamp":1457433769000},"page":"72-91","source":"Crossref","is-referenced-by-count":22,"title":["What Lies Beneath? Analyzing Automated SSH Bruteforce Attacks"],"prefix":"10.1007","author":[{"given":"AbdelRahman","family":"Abdou","sequence":"first","affiliation":[]},{"given":"David","family":"Barrera","sequence":"additional","affiliation":[]},{"given":"Paul C.","family":"van Oorschot","sequence":"additional","affiliation":[]}],"member":"297","reference":[{"key":"6_CR1","unstructured":"Internet Storm Center - SSH Scanning Activity. https:\/\/isc.sans.org\/ssh.html , September 13 (2015)"},{"key":"6_CR2","unstructured":"Nagios. https:\/\/www.nagios.org , September 13 (2015)"},{"key":"6_CR3","unstructured":"Country IP Blocks - Allocation of IP addresses by Country. www.countryipblocks.net\/allocation-of-ip-addresses-by-country.php , September 13 2015"},{"issue":"1","key":"6_CR4","doi-asserted-by":"publisher","first-page":"128","DOI":"10.1109\/TDSC.2011.24","volume":"9","author":"M Alsaleh","year":"2012","unstructured":"Alsaleh, M., Mannan, M., van Oorschot, P.C.: Revisiting defenses against large-scale online password guessing attacks. IEEE Trans. Dependable, Secure Comput. (TDSC) 9(1), 128\u2013141 (2012)","journal-title":"IEEE Trans. Dependable, Secure Comput. (TDSC)"},{"issue":"1","key":"6_CR5","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1145\/290163.290164","volume":"1","author":"F Bergadano","year":"1998","unstructured":"Bergadano, F., Crispo, B., Ruffo, G.: High dictionary compression for proactive password checking. ACM Trans. Inf. Syst. Secur. (TISSEC) 1(1), 3\u201325 (1998)","journal-title":"ACM Trans. Inf. Syst. Secur. (TISSEC)"},{"key":"6_CR6","doi-asserted-by":"crossref","unstructured":"Bonneau, J., The science of guessing: Analyzing an anonymized corpus of 70 million passwords. In: IEEE Symposium on Security and Privacy (2012)","DOI":"10.1109\/SP.2012.49"},{"key":"6_CR7","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/s10623-015-0071-9","volume":"77","author":"S Chiasson","year":"2015","unstructured":"Chiasson, S., van Oorschot, P.C.: Quantifying the security advantage of password. Des. Codes Crypt. 77, 1\u20138 (2015)","journal-title":"Des. Codes Crypt."},{"key":"6_CR8","unstructured":"Durumeric, Z., Wustrow, E., Halderman, J.A.: ZMap: Fast Internet-wide scanning and its security applications. In: USENIX Security, August 2013"},{"key":"6_CR9","unstructured":"Florencio, D., Herley, C., Coskun, B.: Accomplish, do strong web passwords anything? In: USENIX HotSec, pp. 10:1\u201310:6 (2007)"},{"key":"6_CR10","unstructured":"Florencio, D., Herley, C., van Oorschot, P.C.: An administrators guide to internet password research. In: USENIX LISA (2014)"},{"issue":"5","key":"6_CR11","doi-asserted-by":"publisher","first-page":"20","DOI":"10.1145\/2677046.2677050","volume":"44","author":"R Hofstede","year":"2014","unstructured":"Hofstede, R., Hendriks, L., Sperotto, A., Pras, A.: SSH compromise detection using NetFlow\/IPFIX. ACM SIGCOMM CCR 44(5), 20\u201326 (2014)","journal-title":"ACM SIGCOMM CCR"},{"key":"6_CR12","unstructured":"IPinfo. IP Address Details - ipinfo.io. http:\/\/ipinfo.io , September 13 (2015)"},{"key":"6_CR13","doi-asserted-by":"crossref","unstructured":"Javed, M., Paxson, V.: Detecting stealthy, distributed SSH brute-forcing. In:\u00a0ACM CCS (2013)","DOI":"10.1145\/2508859.2516719"},{"key":"6_CR14","unstructured":"Owens, J., Matthews, J.: A study of passwords and methods used in brute-force SSH attacks. In: USENIX LEET (2008)"},{"key":"6_CR15","doi-asserted-by":"crossref","unstructured":"Satoh, A., Nakamura, Y., Ikenaga, T.: Identifying user authentication methods on connections for SSH dictionary attack detection. In: IEEE Annual Computer Software and Applications Conference Workshops (COMPSACW) (2013)","DOI":"10.1109\/COMPSACW.2013.80"},{"key":"6_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"164","DOI":"10.1007\/978-3-642-04989-7_13","volume-title":"Integrated Management of Systems, Services, Processes and People in IT","author":"A Sperotto","year":"2009","unstructured":"Sperotto, A., Sadre, R., de Boer, P.-T., Pras, A.: Hidden markov model modeling of SSH brute-force attacks. In: Bartolini, C., Gaspary, L.P. (eds.) DSOM 2009. LNCS, vol. 5841, pp. 164\u2013176. Springer, Heidelberg (2009)"},{"key":"6_CR17","doi-asserted-by":"crossref","unstructured":"Thames, J.L., Abler, R., Keeling, D.: A distributed active response architecture for preventing SSH dictionary attacks. In: IEEE Southeastcon, pp. 84\u201389 (2008)","DOI":"10.1109\/SECON.2008.4494264"},{"key":"6_CR18","unstructured":"Ylonen, T.: SSH - Secure login connections over the internet. In: USENIX Security (1996)"}],"container-title":["Lecture Notes in Computer Science","Technology and Practice of Passwords"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-29938-9_6","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,1]],"date-time":"2025-06-01T17:40:01Z","timestamp":1748799601000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-29938-9_6"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"ISBN":["9783319299372","9783319299389"],"references-count":18,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-29938-9_6","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2016]]}}}