Automatic Defense Against Zero-day Polymorphic Worms in Communication Networks

摘要: Able to propagate quickly and change their payload with each infection, polymorphic worms have been able evade even the most advanced intrusion detection systems (IDS). And, because zero-day require only seconds launch flooding attacks on your servers, using traditional methodssuch as manually creating storing signatures defend against these threats is just too slow.Bringing together critical knowledge research subject, Automatic Defense Against Zero-day Polymorphic Worms in Communication Networks details a new approach for generating automated unknown worms. It presents experimental results method worm examines implementation of signature-generation algorithms double-honeynet systems.If you need some background, book includes an overview fundamental terms concepts network security, including various security models. Clearing up misconceptions about value honeypots, it explains how they can be useful securing networks, identifies open-source tools use create own honeypot. Theres also chapter references helpful reading resources signature generation systems.The authors describe cutting-edge attack approaches detail help generate Explaining test quality generated signatures, text will develop understanding required effectively protect communication networks. Coverage prevention (IDPS), collection methods, system configurations, architectures.