Worms are a major threat to the security and reliability of today's networks. Because they can spread rapidly from computer to computer, to effectively contain them we need automated methods to very quickly identify and filter new worms before they grow into a massive epidemic. In this paper we propose such an automated approach based on identifying in real time the traffic characteristics common to all worms: highly repetitive packet content, going from an increasing number of infected hosts to very many random IP addresses of potential new victims. Our preliminary results on a small network show that our automated approach of identifying new worms is promising: it identified three confirmed worms with an encouragingly low percentage of fa...
After many Internet-scale worm incidents in recent years, it is clear that a simple self-propagating...
Worm detection systems have traditionally focused on global strategies. In the absence of a global w...
As next-generation computer worms may spread within minutes to millions of hosts, protection via hum...
Worms are a major threat to the security and reliability of today's networks. Because they can sprea...
Network worms are a major threat to the security of today's Internet-connected hosts and networks. T...
The speed of today’s worms demands automated detection, but the risk of false positives poses a diff...
We present two light-weight worm detection algorithms that offer significant advantages over fixed-t...
Worms are arguably the most serious security threat facing the Internet. Seeking a detection techniq...
Worms are arguably the most serious security threat facing the Internet. Seeking a detection techniq...
Self-duplicating, self-propagating malicious codes known as computer worms spread themselves without...
Abstract: Problem statement: A worm is a malicious piece of code that self-propagates, often via net...
Since the days of the Morris worm, the spread of malicious code has been the most imminent menace to...
Abstract — After many Internet-scale worm incidents in recent years, it is clear that a simple self-...
Worm containment must be automatic because worms can spread too fast for humans to respond. Recent w...
Active worms has been major security threat to the Internet. This is due to the ability of active wo...
After many Internet-scale worm incidents in recent years, it is clear that a simple self-propagating...
Worm detection systems have traditionally focused on global strategies. In the absence of a global w...
As next-generation computer worms may spread within minutes to millions of hosts, protection via hum...
Worms are a major threat to the security and reliability of today's networks. Because they can sprea...
Network worms are a major threat to the security of today's Internet-connected hosts and networks. T...
The speed of today’s worms demands automated detection, but the risk of false positives poses a diff...
We present two light-weight worm detection algorithms that offer significant advantages over fixed-t...
Worms are arguably the most serious security threat facing the Internet. Seeking a detection techniq...
Worms are arguably the most serious security threat facing the Internet. Seeking a detection techniq...
Self-duplicating, self-propagating malicious codes known as computer worms spread themselves without...
Abstract: Problem statement: A worm is a malicious piece of code that self-propagates, often via net...
Since the days of the Morris worm, the spread of malicious code has been the most imminent menace to...
Abstract — After many Internet-scale worm incidents in recent years, it is clear that a simple self-...
Worm containment must be automatic because worms can spread too fast for humans to respond. Recent w...
Active worms has been major security threat to the Internet. This is due to the ability of active wo...
After many Internet-scale worm incidents in recent years, it is clear that a simple self-propagating...
Worm detection systems have traditionally focused on global strategies. In the absence of a global w...
As next-generation computer worms may spread within minutes to millions of hosts, protection via hum...