PTBBWD: A fast Process traffic behavior based worm detection algorithm

被引：1

作者：

Xiao Fengtao ^{[1
]}

Hu Huaping ^{[1
]}

Liu Bo ^{[1
]}

Chen Xin ^{[1
]}

机构：

[1] Natl Univ Def Technol, Sch Comp Sci, Changsha 410073, Hunan, Peoples R China

来源：

2008 INTERNATIONAL SEMINAR ON FUTURE INFORMATION TECHNOLOGY AND MANAGEMENT ENGINEERING, PROCEEDINGS | 2008年

关键词：

D O I：

10.1109/FITME.2008.150

中图分类号：

F [经济];

学科分类号：

02 ;

摘要：

An algorithm named PTBBWD is presented to detect worms. It is process traffic behavior based and has considered three important behaviors: total amount of source ports in wormlike traffic, changing frequency of source ports in wormlike process traffic and the wormlike traffic proportion of the total process traffic. Unlike similar work before, PTBBWD checks the frequency and the total amount of source ports only when a process is sending wormlike traffic. Experiments using applications in the wild show that PTBBWD can detect worms quickly and correctly with small false positives.

引用

页码：181 / 186

页数：6

共 50 条

[1] Design and evaluation of a fast and robust worm detection algorithm
Bu, Tian
Chen, Aiyou
Wiel, Scott Vander
Woo, Thomas
25TH IEEE INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATIONS, VOLS 1-7, PROCEEDINGS IEEE INFOCOM 2006, 2006, : 169 - 180
[2] Fast vehicle detection algorithm in traffic scene based on improved SSD
Chen, Zhichao
Guo, Haoqi
Yang, Jie
Jiao, Haining
Feng, Zhicheng
Chen, Lifang
Gao, Tao
MEASUREMENT, 2022, 201
[3] A Fast Detection Algorithm For Moving Vehicle In Traffic Scenes
Zhang Ming
Feng Yuan-jing
Li Kang
Lin Feng
2014 33RD CHINESE CONTROL CONFERENCE (CCC), 2014, : 4727 - 4731
[4] A Fast and Robust Algorithm for Fighting Behavior Detection Based on Motion Vectors
Xie, Jianbin
Liu, Tong
Yan, Wei
Li, Peiqin
Zhuang, Zhaowen
KSII TRANSACTIONS ON INTERNET AND INFORMATION SYSTEMS, 2011, 5 (11): : 2191 - 2203
[5] Analysis of abnormalities of worm traffic for obtaining worm detection vectors
Xiang, Zhengtao
Chen, Yufeng
Dong, Yabo
Lao, Honglan
INTELLIGENCE AND SECURITY INFORMATICS, PROCEEDINGS, 2006, 3975 : 584 - 589
[6] Reinforcement Learning Based Fast Worm Detection for Smart Grids
Ning, Baifeng
Xiao, Liang
2021 PROCEEDINGS OF THE 40TH CHINESE CONTROL CONFERENCE (CCC), 2021, : 8592 - 8597
[7] Entropy based worm and anomaly detection in fast IP networks
Wagner, A
Plattner, B
FOURTEENTH IEEE INTERNATIONAL WORKSHOPS ON ENABLING TECHNOLOGIES: INFRASTRUCTURE FOR COLLABORATIVE ENTERPRISES, PROCEEDINGS, 2005, : 172 - 177
[8] Behavior-based Worm Detection and Signature Generation
Yao, Yu
Lv, Junwei
Gao, Fuxiang
Zhang, Yanfang
Yu, Ge
2008 INTERNATIONAL MULTISYMPOSIUMS ON COMPUTER AND COMPUTATIONAL SCIENCES (IMSCCS), 2008, : 124 - 131
[9] A neural-based agent for IP traffic scanning and worm detection
Bielecki, A
Hajto, P
ARTIFICIAL INTELLIGENCE AND SOFT COMPUTING - ICAISC 2004, 2004, 3070 : 816 - 822
[10] A Traffic Tracking Algorithm for a Fast Detection of Active Network Sources
Atiyah, Ayah
Almajali, Sufyan
ICFNDS'18: PROCEEDINGS OF THE 2ND INTERNATIONAL CONFERENCE ON FUTURE NETWORKS AND DISTRIBUTED SYSTEMS, 2018,

← 1 2 3 4 5 →