DocumentCode :
1942173
Title :
Correlation based analysis of spreading Codered worms
Author :
Zhang, Qianli ; Wang, Jilong ; Li, Xing
Author_Institution :
CERNET Center, Tsinghua Univ., Beijing, China
fYear :
2010
fDate :
13-15 Aug. 2010
Firstpage :
458
Lastpage :
462
Abstract :
The spreading worms have greatly affected the network infrastructure security. After the CodeRed, there have been many new worms reported. To take countermeasure against the spreading worms, in this paper, a correlation based method is proposed and applied in the analysis. Results indicate that the spreading worms could cause dramatic changes in the flow size distribution. This method provides new insight into the worm detection and traffic anomaly discovery.
Keywords :
computer network security; correlation methods; invasive software; statistical analysis; CodeRed worms; correlation analysis; flow size distribution; network infrastructure security; traffic anomaly discovery; worm detection; Computer crime; Correlation; Grippers; IP networks; Internet; Probes;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Intelligent Control and Information Processing (ICICIP), 2010 International Conference on
Conference_Location :
Dalian
Print_ISBN :
978-1-4244-7047-1
Type :
conf
DOI :
10.1109/ICICIP.2010.5564187
Filename :
5564187
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=1942173
بازگشت