Internet Worm Detection and Classification Based on Support Vector Machine
作者: Huihui Liang , Min Li , Jiwen Chai
DOI: 10.1007/978-3-319-01766-2_74
关键词:
摘要: This paper proposes a novel Internet worm detection and classification method. The behaviors of worms are different from each other’s, they also in terms the normal activities. So we can detect classify by extracted features network packets. At first, sniff raw packets local area (LAN), extract 13 packet header, then select 10 important using information gain algorithm. With labeled features, train Support Vector Machine (SVM) classifiers. classifiers apart And this approach attacks worms, although have similar behaviors. In experiments, performs well classification.
springer.com
sci-hub.st 参考文章(7)
Emmanouil Magkos, Markos Avlonitis, Panayiotis Kotzanikolaou, Michalis Stefanidakis, Toward early warning against Internet worms based on critical-sized networks Security and Communication Networks. ,vol. 6, pp. 78- 88 ,(2013) , 10.1002/SEC.534
Christopher M. Bishop, Pattern Recognition and Machine Learning ,(2006)
Hong Zheng, Wu Lifa, Li Huabo, Pan Fan, Worm detection and containment in local networks international conference on computer science and information processing. pp. 595- 598 ,(2012) , 10.1109/CSIP.2012.6308924
Nir Nissim, Robert Moskovitch, Lior Rokach, Yuval Elovici, Detecting unknown computer worm activity via support vector machines and active learning Pattern Analysis and Applications. ,vol. 15, pp. 459- 475 ,(2012) , 10.1007/S10044-012-0296-4
Klaus Julisch, Understanding and overcoming cyber security anti-patterns Computer Networks. ,vol. 57, pp. 2206- 2211 ,(2013) , 10.1016/J.COMNET.2012.11.023
Ashraf Matrawy, Stanley Chow, Bassem Abdelaziz, Craig Smith, Computer Worms: Architectures, Evasion Strategies, and Detection Mechanisms ,(2009)
Stanley Taihai Chow, Peter Rabinovitch, Abdel-Aziz Bassem, Worm detection by trending fan out ,(2008)