Please use this identifier to cite or link to this item:
https://repository.cihe.edu.hk/jspui/handle/cihe/1346| Title: | Fast and accurate detection for polymorphic worms | Author(s): | Chan, Anthony Hing-Hung | Author(s): | Mohammed, M. M. Z. E. Ventura, N. Hashim, M. Bashier, E. |
Issue Date: | 2010 | Publisher: | IEEE | Related Publication(s): | Proceedings of the 2010 International Conference for Internet Technology and Secured Transactions (ICITST) | Start page: | 305 | End page: | 310 | Abstract: | Computer worms pose a real threat to the Internet security, and their automatic nature makes them powerful and destructive. In this paper we propose fast and accurate detection system for Zero-day polymorphic worms. We have designed a novel double-honeynet system, which is able to detect new worms that have not been seen before. We apply Principal Component Analysis (PCA) to reduce the dimension of worm payloads such that only the most probable signatures of the worm will be obtained. The experimental results show that the PCA has successfully detected polymorphic worms with zero false positives and low false negatives. |
URI: | https://repository.cihe.edu.hk/jspui/handle/cihe/1346 | CIHE Affiliated Publication: | No |
| Appears in Collections: | CIS Publication |
Show full item record
Google ScholarTM
Check
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
