Please use this identifier to cite or link to this item:
https://repository.cihe.edu.hk/jspui/handle/cihe/1344| Title: | Accurate signature generation for polymorphic worms using principal component analysis | Author(s): | Chan, Anthony Hing-Hung | Author(s): | Mohammed. M. M. Z. E. Ventura, N. Hashim, M. Amin, I. Bashier, E. |
Issue Date: | 2010 | Publisher: | IEEE | Related Publication(s): | Proceedings of the 2010 IEEE GLOBECOM Workshops (GC Wkshps) | Start page: | 1555 | End page: | 1560 | Abstract: | Internet worms pose a major threat to Internet infrastructure security, and their destruction causes loss of millions of dollars. Therefore, the networks must be pro-tected as much as possible to avoid losses. In this paper we propose accurate system for signature generation for Zero-day polymorphic worms. We have designed a novel double-honeynet system, which is able to detect new worms that have not been seen before. We apply Princi-pal Component Analysis (PCA) to determine the most significant substrings that are shared between po-lymorphic worm instances. The experimental results show that the PCA has successfully detected polymorphic worms with zero false positives and zero false negatives. |
URI: | https://repository.cihe.edu.hk/jspui/handle/cihe/1344 | DOI: | 10.1109/GLOCOMW.2010.5700200 | CIHE Affiliated Publication: | No |
| Appears in Collections: | CIS Publication |
Show full item record
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
