{"title":"零日多态蠕虫检测综述","authors":"S. M. Sulieman, Yahia A. Fadlalla","doi":"10.1109/NCG.2018.8593085","DOIUrl":null,"url":null,"abstract":"a computer worm is malicious software that has the capability to spread and replicate itself into a computer network. A polymorphic worm is a specific type of worm that changed its structure in every appearance or new instance. A polymorphic worm is considered as one of the most dangerous threats over the Internet because it is hard to detect. It also has the ability to change its payload in every new infection of every new victim to avoid detection by security systems. This survey paper reviews and discusses the recent methods that are used to detect and generate automatic signature for zero day polymorphic worm.","PeriodicalId":305464,"journal":{"name":"2018 21st Saudi Computer Society National Computer Conference (NCC)","volume":"61 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-04-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"Detecting Zero-day Polymorphic Worm: A Review\",\"authors\":\"S. M. Sulieman, Yahia A. Fadlalla\",\"doi\":\"10.1109/NCG.2018.8593085\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"a computer worm is malicious software that has the capability to spread and replicate itself into a computer network. A polymorphic worm is a specific type of worm that changed its structure in every appearance or new instance. A polymorphic worm is considered as one of the most dangerous threats over the Internet because it is hard to detect. It also has the ability to change its payload in every new infection of every new victim to avoid detection by security systems. This survey paper reviews and discusses the recent methods that are used to detect and generate automatic signature for zero day polymorphic worm.\",\"PeriodicalId\":305464,\"journal\":{\"name\":\"2018 21st Saudi Computer Society National Computer Conference (NCC)\",\"volume\":\"61 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-04-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 21st Saudi Computer Society National Computer Conference (NCC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/NCG.2018.8593085\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 21st Saudi Computer Society National Computer Conference (NCC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NCG.2018.8593085","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
a computer worm is malicious software that has the capability to spread and replicate itself into a computer network. A polymorphic worm is a specific type of worm that changed its structure in every appearance or new instance. A polymorphic worm is considered as one of the most dangerous threats over the Internet because it is hard to detect. It also has the ability to change its payload in every new infection of every new victim to avoid detection by security systems. This survey paper reviews and discusses the recent methods that are used to detect and generate automatic signature for zero day polymorphic worm.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
