inverse mapping

1) In computer graphics programming, inverse mapping (also known as backward mapping) is a technique used with texture mapping.

2) In a computer network, inverse mapping is a stealth-approach network scanning method that gathers information about inactive IP addresses on a network to try to determine which IP addresses are associated with active hosts.

According to the Systems Administration and Network Security (SANS) Institute, typical firewall procedures can help the attacker to gain the information they seek. Typically, firewalls and routers do not respond to a ping response packet if the target address exists on the network, but respond with an ICMP (Internet Control Message Protocol) host unreachable signal if the target is not available. The absence of response allows the attacker to guess which IP addresses of a given address block map to live hosts.

Inverse mapping may be a widely-used attack technique. In November 1999, the SANS Institute noticed evidence in their router and firewall logs that they were receiving responses to ping requests in cases where no network machine had sent the request. When SANS made that information available to its membership, many members reported similar network activity.

Read more about inverse mapping: - SearchSecurity.com provides a collection of Best Web Links for Common Vulnerabilites and Prevention Tips. - Sys-Security.com maintains a helpful document called "Network Scanning Techniques: Understanding how it is done."

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT What are the best ways to hide system information from network scanning software? Network scanning software is capable of obtaining sensitive system information. Mike Chappel explains how implementing various firewalls can stop... How to run a Nessus system scan In the second tip in our series on running Nessus in the enterprise, our contributor takes you step-by-step through the process of running a Nessus... Nessus: Vulnerability scanning in the enterprise General advice for vulnerability scanning in the enterprise with the open source vulnerability scanner Nessus.

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary network behavior analysis  (SearchSecurity.com) Network behavior analysis (NBA) is a method of enhancing the security of a proprietary network by monitoring traffic and noting unusual actions or... network scanning  (SearchSecurity.com)