Please use this identifier to cite or link to this item:
https://repository.cihe.edu.hk/jspui/handle/cihe/1281| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Chan, Anthony Hing-Hung | en_US |
| dc.contributor.other | Mohammed, M. M. Z. E. | - |
| dc.contributor.other | Ventura, N. | - |
| dc.contributor.other | Hashim, M. | - |
| dc.contributor.other | Bashier, E. | - |
| dc.date.accessioned | 2021-08-13T05:23:49Z | - |
| dc.date.available | 2021-08-13T05:23:49Z | - |
| dc.date.issued | 2011 | - |
| dc.identifier.uri | https://repository.cihe.edu.hk/jspui/handle/cihe/1281 | - |
| dc.description.abstract | Internet Worms pose a major threat to Internet infrastructure security. Security experts manually generate the IDS signatures by studying the network traces after a new worm has been released, a rather costly, laborious, and time consuming task. In this paper we propose automated signature generation system for polymorphic worms. We apply Principal Component Analysis (PCA) to determine the most significant substrings that are shared between polymorphic worm instances and use them as signatures. The experimental results show that the PCA has successfully detected polymorphic worms with zero false positives and low false negatives. | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | Infonomics Society | en_US |
| dc.relation.ispartof | International Journal for Information Security Research | en_US |
| dc.title | An automated signature generation approach for polymorphic worms using principal component analysis | en_US |
| dc.type | journal article | en_US |
| dc.identifier.doi | 10.20533/ijisr.2042.4639.2011.0006 | - |
| dc.contributor.affiliation | School of Computing and Information Sciences | en_US |
| dc.relation.issn | 2042-4639 | en_US |
| dc.description.volume | 1 | en_US |
| dc.description.issue | 2 | en_US |
| dc.description.startpage | 45 | en_US |
| dc.description.endpage | 52 | en_US |
| dc.cihe.affiliated | No | - |
| item.languageiso639-1 | en | - |
| item.fulltext | With Fulltext | - |
| item.openairetype | journal article | - |
| item.grantfulltext | open | - |
| item.openairecristype | http://purl.org/coar/resource_type/c_6501 | - |
| item.cerifentitytype | Publications | - |
| crisitem.author.dept | Yam Pak Charitable Foundation School of Computing and Information Sciences | - |
| crisitem.author.orcid | 0000-0001-7479-0787 | - |
| Appears in Collections: | CIS Publication | |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| View Online | 117 B | HTML | View/Open |
Show simple item record
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
