Please use this identifier to cite or link to this item:
https://repository.cihe.edu.hk/jspui/handle/cihe/1360| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Chan, Anthony Hing-Hung | en_US |
| dc.contributor.other | Mohammed, M. M. Z. E. | - |
| dc.contributor.other | Ventura, N. | - |
| dc.contributor.other | Hashim, M. | - |
| dc.contributor.other | Amin, I. | - |
| dc.date.accessioned | 2021-08-19T11:06:36Z | - |
| dc.date.available | 2021-08-19T11:06:36Z | - |
| dc.date.issued | 2009 | - |
| dc.identifier.uri | https://repository.cihe.edu.hk/jspui/handle/cihe/1360 | - |
| dc.description.abstract | Internet worms are increasing every year, and they increasingly threaten the availability and integrity of Internet-based services. Polymorphic worms evade signature-based Intrusion Detection Systems (IDSs) by varying their payload on every infection attempt. In this paper, we propose a system for automated signature generation for Zero-day polymorphic worms. We have designed a novel double-honeynet system, which is able to detect new worms that have not been seen before. The system is based on an efficient algorithm that uses worms binary representation for pattern matching. The system is able to generate accurate signatures for single and multiple worms. | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | IEEE | en_US |
| dc.title | Polymorphic worm detection using double-honeynet | en_US |
| dc.type | conference proceedings | en_US |
| dc.relation.publication | Proceedings of the 2009 Fourth International Conference on Software Engineering Advances (ICSEA) | en_US |
| dc.identifier.doi | 10.1109/ICSEA.2009.64 | - |
| dc.contributor.affiliation | School of Computing and Information Sciences | en_US |
| dc.relation.isbn | 9781424447794 | en_US |
| dc.description.startpage | 401 | en_US |
| dc.description.endpage | 406 | en_US |
| dc.cihe.affiliated | No | - |
| item.fulltext | No Fulltext | - |
| item.grantfulltext | none | - |
| item.cerifentitytype | Publications | - |
| item.openairecristype | http://purl.org/coar/resource_type/c_5794 | - |
| item.openairetype | conference proceedings | - |
| item.languageiso639-1 | en | - |
| crisitem.author.dept | School of Computing and Information Sciences | - |
| crisitem.author.orcid | 0000-0001-7479-0787 | - |
| Appears in Collections: | CIS Publication | |
Show simple item record
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
