Large scale network worm detection using automatic signature extraction

WANG Ping; FANG Bin-xing; YUN Xiao-chun

Tongxin xuebao (Jan 2006)

Large scale network worm detection using automatic signature extraction

WANG Ping,
FANG Bin-xing,
YUN Xiao-chun

Affiliations

WANG Ping
FANG Bin-xing
YUN Xiao-chun

Abstract

Read online

Worms had done serious harm to the computer networks due to their propagating speeds.The research was necessary to detect worms quickly and automatically.In large scale networks,flux based anomaly found module was used to screen out anomalous network data set,and automatic signature extraction was processed in succession,then its signa-ture was updated to the signature database of the signature based detection module,thus,the approach to detect unknown worms was realized.Novel epidemic can be found effectively,and the whole system is the fundament of worm automatic defense.

Published in Tongxin xuebao

ISSN: 1000-436X (Print)
Publisher: Editorial Department of Journal on Communications
Country of publisher: China
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: http://www.infocomm-journal.com/txxb/EN/1000-436X/home.shtml

About the journal

Abstract

Keywords