Approach to early detection and defense against internet worms

CHEN Bo; FANG Bin-xing; YUN Xiao-chun

您当前的位置：

首页 >

文章列表页 >

Approach to early detection and defense against internet worms

更新时间：2024-10-14

- Approach to early detection and defense against internet worms
- Issue 2, Pages: 9-16(2007)
- 作者机构：
  
  1. 哈尔滨工业大学计算机网络与信息安全技术研究中心
  2. 哈尔滨工业大学计算机网络与信息安全技术研究中心,黑龙江,哈尔滨,150001
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP309.5
- Published：2007
- 稿件说明：
移动端阅览
CHEN Bo, FANG Bin-xing, YUN Xiao-chun. Approach to early detection and defense against internet worms[J]. 2007, (2): 9-16.
DOI：

CHEN Bo, FANG Bin-xing, YUN Xiao-chun. Approach to early detection and defense against internet worms[J]. 2007, (2): 9-16. DOI：

摘要

提出了一种分布式蠕虫遏制机制

它由两大部分组成:中央的数据处理中心和分布在各网关的感知器。中央的数据处理中心接收感知器的检测结果

并统计蠕虫的感染状况。分布在各网关的感知器监测网络行为并检测蠕虫是否存在。若检测到蠕虫的存在

感知器根据蠕虫的疫情状况

启动自适应的丢包机制。最后

实验结果证明了该遏制系统能够有效地遏制蠕虫的传播

保护网络的运行;尽可能小的干扰正常的网络行为。

Abstract

A distributed defense mechanism was proposed.The main task of defense mechanism was to quickly detect worm attacks and response to constrain their propagation.The defense mechanism was composed of two parts: a date processing centre（DPC） and distributed sensors for defending against worm attacks.DPC is responsible for receiving the result of each distributed sensor and computing the number of infected computer.These distributed sensors monitor the network and detect worm.Once a worm attack was detected

a dropping packet mechanism is used so that the worm propagation was con-strained

and the number of interference with normal activity is minimized.The experimental results prove the robustness and efficiency of the proposed defense mechanism.

关键词

Keywords

references

Views

914

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Automated polymorphic worm signature generation approach based on seed-extending

HPBR:host packet behavior ranking model used in worm detection

Novel approach based on neighborhood relation signature against polymorphic internet worms

Related Author

Jie WANG

Xiao-xian HE

XIAO Feng-tao1

HU Hua-ping1

LIU Bo1

CHEN Xin1

WANG Jie1

WANG Jian-xin1

Related Institution

School of Information Science and Engineering,Central South University

School of Computer Science, National University of Defense Technology

The 61070 Army

Network Security and Technical Reconnaissance Corps,Hunan Public Security Department

AI问答

⁰