An Internet-worm early warning system

被引：0

作者：

Chen, SG ^{[1
]}

Ranka, S ^{[1
]}

机构：

[1] Univ Florida, Dept Comp & Informat Sci & Engn, Gainesville, FL 32611 USA

来源：

GLOBECOM '04: IEEE GLOBAL TELECOMMUNICATIONS CONFERENCE, VOLS 1-6 | 2004年

关键词：

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

We propose an Internet-worm early warning system, which integrates a set of novel techniques that automatically detect the concerted scan activity of an on-going worm attack. It is able to issue warning at the early stage of worm propagation and to provide necessary information for security analysts to control the damage. The system monitors a "used" address space. Unlike the traditional approach that keeps track of SYN packets, it relies on RESET packets to find the scan sources, which has greater accuracy and less overhead. The system is resilient to anti-monitor measures. Particularly, a sophisticated protocol is designed to distinguish faked scan sources from real scan sources. We provide an analytical study on the properties and effectiveness of this early warning system, and back up our claims by numerical results.

引用

页码：2261 / 2265

页数：5

共 50 条

[1] A NetFlow Based Internet-worm Detecting System in Large Network
Chan, Yi-Tung F.
Shoniregun, Charles A.
Akmayeva, Galyna A.
2008 THIRD INTERNATIONAL CONFERENCE ON DIGITAL INFORMATION MANAGEMENT, VOLS 1 AND 2, 2008, : 593 - +
[2] Research of internet worm warning system based on system identification
Tao ZHOU
Journal of Control Theory and Applications, 2006, (04) : 409 - 412
[3] Research of internet worm warning system based on system identification
Tao Zhou
Guanzhong Dai
Huimin Ye
Journal of Control Theory and Applications, 2006, 4 (4): : 409 - 412
[4] Improving internet worm warning system based on Kalman filter
Department of Automatic Control, Northwestern Polytechnical University, Xi'an 710072, China
Xibei Gongye Daxue Xuebao, 2006, 1 (19-22):
[5] European internet early warning system
Hesse, Malte
Pohlmann, Norbert
INTERNATIONAL JOURNAL OF ELECTRONIC SECURITY AND DIGITAL FORENSICS, 2009, 2 (01) : 1 - 17
[6] Flood early warning system: sensors and internet
Pengel, B. E.
Krzhizhanovskaya, V. V.
Melnikova, N. B.
Shirshov, G. S.
Koelewijn, A. R.
Pyayt, A. L.
Mokhov, I. I.
FLOODS: FROM RISK TO OPPORTUNITY, 2013, 357 : 445 - +
[7] Is Early Warning of an Imminent Worm Epidemic Possible?
Park, Hyundo
Kim, Hyogon
Lee, Heejo
IEEE NETWORK, 2009, 23 (05): : 14 - 20
[8] Designing Flood Early Warning System Using Internet of Things
Fernando, Michael
Gaol, Ford Lumban
6TH INTERNATIONAL CONFERENCE ON SCIENCE & ENGINEERING IN MATHEMATICS, CHEMISTRY AND PHYSICS: SCIETECH18: THE NATURE MATH - THE SCIENCE, 2018, 2043
[9] Technologies of Internet of Things applied to an Earthquake Early Warning System
Zambrano, A. M.
Perez, I.
Palau, C.
Esteve, M.
FUTURE GENERATION COMPUTER SYSTEMS-THE INTERNATIONAL JOURNAL OF ESCIENCE, 2017, 75 : 206 - 215
[10] Network Worm Propagation Model and Early Warning Studies
Yang, Yuejiang
Fu, Gui
ITESS: 2008 PROCEEDINGS OF INFORMATION TECHNOLOGY AND ENVIRONMENTAL SYSTEM SCIENCES, PT 1, 2008, : 69 - 73

← 1 2 3 4 5 →