Please use this identifier to cite or link to this item:
https://repository.cihe.edu.hk/jspui/handle/cihe/1344| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Chan, Anthony Hing-Hung | en_US |
| dc.contributor.other | Mohammed. M. M. Z. E. | - |
| dc.contributor.other | Ventura, N. | - |
| dc.contributor.other | Hashim, M. | - |
| dc.contributor.other | Amin, I. | - |
| dc.contributor.other | Bashier, E. | - |
| dc.date.accessioned | 2021-08-18T08:42:52Z | - |
| dc.date.available | 2021-08-18T08:42:52Z | - |
| dc.date.issued | 2010 | - |
| dc.identifier.uri | https://repository.cihe.edu.hk/jspui/handle/cihe/1344 | - |
| dc.description.abstract | Internet worms pose a major threat to Internet infrastructure security, and their destruction causes loss of millions of dollars. Therefore, the networks must be pro-tected as much as possible to avoid losses. In this paper we propose accurate system for signature generation for Zero-day polymorphic worms. We have designed a novel double-honeynet system, which is able to detect new worms that have not been seen before. We apply Princi-pal Component Analysis (PCA) to determine the most significant substrings that are shared between po-lymorphic worm instances. The experimental results show that the PCA has successfully detected polymorphic worms with zero false positives and zero false negatives. | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | IEEE | en_US |
| dc.title | Accurate signature generation for polymorphic worms using principal component analysis | en_US |
| dc.type | conference proceedings | en_US |
| dc.relation.publication | Proceedings of the 2010 IEEE GLOBECOM Workshops (GC Wkshps) | en_US |
| dc.identifier.doi | 10.1109/GLOCOMW.2010.5700200 | - |
| dc.contributor.affiliation | School of Computing and Information Sciences | en_US |
| dc.relation.isbn | 9781424488636 | en_US |
| dc.description.startpage | 1555 | en_US |
| dc.description.endpage | 1560 | en_US |
| dc.cihe.affiliated | No | - |
| item.openairecristype | http://purl.org/coar/resource_type/c_5794 | - |
| item.grantfulltext | none | - |
| item.cerifentitytype | Publications | - |
| item.languageiso639-1 | en | - |
| item.fulltext | No Fulltext | - |
| item.openairetype | conference proceedings | - |
| crisitem.author.dept | School of Computing and Information Sciences | - |
| crisitem.author.orcid | 0000-0001-7479-0787 | - |
| Appears in Collections: | CIS Publication | |
Show simple item record
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
