Detecting Zero-day Polymorphic Worm: A Review
作者: Sulieman Mohamed Ali Sulieman , Yahia A. Fadlalla
关键词: Malware 、 Zero (linguistics) 、 The Internet 、 Computer worm 、 Computer security 、 New infection 、 Payload (computing) 、 Computer science
摘要: a computer worm is malicious software that has the capability to spread and replicate itself into network. A polymorphic specific type of changed its structure in every appearance or new instance. considered as one most dangerous threats over Internet because it hard detect. It also ability change payload infection victim avoid detection by security systems. This survey paper reviews discusses recent methods are used detect generate automatic signature for zero day worm.
sci-hub.se 参考文章(17)
Yangseo Choi, Koohong Kang, Ikkyun Kim, Jintae Oh, Daewon Kim, Jongsoo Jang, Validation Methods of Suspicious Network Flows for Unknown Attack Detection ,(2009)
L. Spitzner, Honeypots: Tracking Hackers ,(2002)
Jose Nazario, Defense and Detection Strategies against Internet Worms ,(2003)
Ratinder Kaur, Maninder Singh, A Survey on Zero-Day Polymorphic Worm Detection Techniques IEEE Communications Surveys and Tutorials. ,vol. 16, pp. 1520- 1549 ,(2014) , 10.1109/SURV.2014.022714.00160
Lorenzo Cavallaro, Andrea Lanzi, Luca Mayer, Mattia Monga, LISABETH Proceedings of the fourth international workshop on Software engineering for secure systems - SESS '08. pp. 41- 48 ,(2008) , 10.1145/1370905.1370911
Mohssen M. Z. E. Mohammed, H. Anthony Chan, Neco Ventura, Honeycyber: Automated signature generation for zero-day polymorphic worms military communications conference. pp. 1- 6 ,(2008) , 10.1109/MILCOM.2008.4753178
Roberto Perdisci, Prahlad Fogla, Oleg Kolesnikov, Wenke Lee, Monirul Sharif, Polymorphic blending attacks usenix security symposium. pp. 17- ,(2006)
J. Levine, R. LaBella, H. Owen, D. Contis, B. Culver, The use of Honeynets to detect exploited systems across large enterprise networks systems man and cybernetics. pp. 92- 99 ,(2003) , 10.1109/SMCSIA.2003.1232406
William Stallings, Cryptography and Network Security: Principles and Practice ,(1998)
Zhichun Li, Manan Sanghi, Yan Chen, Ming-Yang Kao, B. Chavez, Hamsa: fast signature generation for zero-day polymorphic worms with provable attack resilience ieee symposium on security and privacy. pp. 32- 47 ,(2006) , 10.1109/SP.2006.18