Large scale network worm detection using automatic signature extraction

WANG Ping; FANG Bin-xing; YUN Xiao-chun

您当前的位置：

首页 >

文章列表页 >

Large scale network worm detection using automatic signature extraction

更新时间：2024-10-14

- Large scale network worm detection using automatic signature extraction
- Issue 6, Pages: 87-93(2006)
- 作者机构：
  
  1. 哈尔滨工业大学国家计算机信息内容安全重点实验室
  2. 哈尔滨工业大学国家计算机信息内容安全重点实验室,黑龙江,哈尔滨,150001
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP393.08
- Published：2006
- 稿件说明：
移动端阅览
WANG Ping, FANG Bin-xing, YUN Xiao-chun. Large scale network worm detection using automatic signature extraction[J]. 2006, (6): 87-93.
DOI：

WANG Ping, FANG Bin-xing, YUN Xiao-chun. Large scale network worm detection using automatic signature extraction[J]. 2006, (6): 87-93. DOI：

摘要

蠕虫由于传播速度很快在网络中造成了严重的危害

对蠕虫进行自动的快速检测成了一项必需的研究。研究了在大规模网络中

利用流量异常发现模块从网络中发现异常数据集

然后自动进行特征提取

进而将特征更新到特征检测的特征库中进行特征检测的方法

实现对未知蠕虫的检测。本系统能够快速地发现新的疫情

作为蠕虫的自动防御的基础。

Abstract

Worms had done serious harm to the computer networks due to their propagating speeds.The research was necessary to detect worms quickly and automatically.In large scale networks

flux based anomaly found module was used to screen out anomalous network data set

and automatic signature extraction was processed in succession

then its signa-ture was updated to the signature database of the signature based detection module

thus

the approach to detect unknown worms was realized.Novel epidemic can be found effectively

and the whole system is the fundament of worm automatic defense.

关键词

Keywords

references

Views

1064

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Worm detection and signature extraction based on communication characteristics

Internet worm propagation model based on Markov chain

Automatic generating regular expression signatures for real network worms

Worm propagation modeling in cloud security

User-habit based early warning of worm

Related Author

LI Zhi-dong1

YUN Xiao-chun2

HE Long-tao2

FANG Bin-xing1

XIN Yi1

IADa-yu J

IUJian L

UOWei G

Related Institution

National Computer Network Emergency Response Technical Team/Coordination Center of China

Research Center of Computer Network and Information Security Technology,Harbin Institute of Technology

School of Information Science,Liaoning University

School of Computer,Shenyang Aerospace University

School of Information Science and Engineering,Northeastern University

AI问答

⁰