早期遏制快速网络蠕虫恶意软件

2016 3rd National Foundation for Science and Technology Development Conference on Information and Computer Science (NICS) Pub Date : 2016-10-31 DOI:10.1109/NICS.2016.7725649

M. Ahmad, Steve Woodhead, D. Gan

{"title":"早期遏制快速网络蠕虫恶意软件","authors":"M. Ahmad, Steve Woodhead, D. Gan","doi":"10.1109/NICS.2016.7725649","DOIUrl":null,"url":null,"abstract":"This paper presents a countermeasure mechanism for the propagation of fast network worm malware. The mechanism uses a cross layer architecture with a detection technique at the network layer to identify worm infection and a data-link containment solution to block an identified infected host. A software prototype of the mechanism has been used to demonstrate its effective. An empirical analysis of network worm propagation has been conducted to test the mechanism. The results show that the developed mechanism is effective in containing self-propagating malware with almost no false positives.","PeriodicalId":347057,"journal":{"name":"2016 3rd National Foundation for Science and Technology Development Conference on Information and Computer Science (NICS)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2016-10-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"Early containment of fast network worm malware\",\"authors\":\"M. Ahmad, Steve Woodhead, D. Gan\",\"doi\":\"10.1109/NICS.2016.7725649\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper presents a countermeasure mechanism for the propagation of fast network worm malware. The mechanism uses a cross layer architecture with a detection technique at the network layer to identify worm infection and a data-link containment solution to block an identified infected host. A software prototype of the mechanism has been used to demonstrate its effective. An empirical analysis of network worm propagation has been conducted to test the mechanism. The results show that the developed mechanism is effective in containing self-propagating malware with almost no false positives.\",\"PeriodicalId\":347057,\"journal\":{\"name\":\"2016 3rd National Foundation for Science and Technology Development Conference on Information and Computer Science (NICS)\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-10-31\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 3rd National Foundation for Science and Technology Development Conference on Information and Computer Science (NICS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/NICS.2016.7725649\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 3rd National Foundation for Science and Technology Development Conference on Information and Computer Science (NICS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NICS.2016.7725649","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

摘要

本文提出了一种针对快速网络蠕虫恶意软件传播的对策机制。该机制使用跨层架构，在网络层使用检测技术来识别蠕虫感染，并使用数据链路遏制解决方案来阻止已识别的受感染主机。通过软件原型验证了该机制的有效性。本文对网络蠕虫的传播进行了实证分析，以检验其传播机制。结果表明，所开发的机制能够有效遏制自传播恶意软件，几乎没有误报。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Early containment of fast network worm malware

This paper presents a countermeasure mechanism for the propagation of fast network worm malware. The mechanism uses a cross layer architecture with a detection technique at the network layer to identify worm infection and a data-link containment solution to block an identified infected host. A software prototype of the mechanism has been used to demonstrate its effective. An empirical analysis of network worm propagation has been conducted to test the mechanism. The results show that the developed mechanism is effective in containing self-propagating malware with almost no false positives.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2016 3rd National Foundation for Science and Technology Development Conference on Information and Computer Science (NICS)

自引率

0.00%

发文量