An Effective Architecture and Algorithm for Detecting Worms with Various Scan
نویسندگان
چکیده
Since the days of the Morris worm, the spread of malicious code has been the most imminent menace to the Internet. Worms use various scanning methods to spread rapidly. Worms that select scan destinations carefully can cause more damage than worms employing random scan. This paper analyzes various scan techniques. We then propose a generic worm detection architecture that monitors malicious activities. We propose and evaluate an algorithm to detect the spread of worms using real time traces and simulations. We find that our solution can detect worm activities when only 4% of the vulnerable machines are infected. Our results bring insight on the future battle against worm attacks.
منابع مشابه
Effective worm detection for various scan techniques
In recent years, the threats and damages caused by active worms have become more and more serious. In order to reduce the loss caused by fastspreading active worms, an effective detection mechanism to quickly detect worms is desired. In this paper, we first explore various scan strategies used by worms on finding vulnerable hosts. We show that targeted worms spread much faster than random scan ...
متن کاملData Mining for Cyber Security
This chapter provides an overview of the Minnesota Intrusion Detection System (MINDS), which uses a suite of data mining based algorithms to address different aspects of cyber security. The various components of MINDS such as the scan detector, anomaly detector and the profiling module detect different types of attacks and intrusions on a computer network. The scan detector aims at detecting sc...
متن کاملDetecting and counting vehicles using adaptive background subtraction and morphological operators in real time systems
vehicle detection and classification of vehicles play an important role in decision making for the purpose of traffic control and management.this paper presents novel approach of automating detecting and counting vehicles for traffic monitoring through the usage of background subtraction and morphological operators. We present adaptive background subtraction that is compatible with weather and ...
متن کاملDiagnosis of COVID-19 Disease Using Lung CT-scan Image Processing Techniques
Introduction: Today, several methods are used for detecting COVID-19 such as disease-related clinical symptoms, and more accurate diagnostic methods like lung CT-scan imaging. This study aimed to achieve an accurate diagnostic method for intelligent and automatic diagnosis of COVID-19 using lung CT-scan image processing techniques and utilize the results of this method as an accurate diagnostic...
متن کاملDiagnosis of COVID-19 Disease Using Lung CT-scan Image Processing Techniques
Introduction: Today, several methods are used for detecting COVID-19 such as disease-related clinical symptoms, and more accurate diagnostic methods like lung CT-scan imaging. This study aimed to achieve an accurate diagnostic method for intelligent and automatic diagnosis of COVID-19 using lung CT-scan image processing techniques and utilize the results of this method as an accurate diagnostic...
متن کامل