A Proposal of Internet Worm Detection Using ICMP
暂无分享,去创建一个
With the rapid proliferation of various types of worms that create different types of threats to the network security in recent years, The conventional worms detection techniques are no longer effective in playing their roles. However, it is important for the contemporary society to protect the network, the Internet, as one of the most widely used social infrastructure nowadays. Therefore, we propose and implement that a worm detection method using the characteristics of ICMP traffic be generated during the spread of the worm’s infection. From the implementation, we observe that our proposed techniques are not only low-cost and low-overhead, but also capable in detecting unknown worms as compared to the conventional methods.
[1] Jon Postel,et al. Internet Control Message Protocol , 1981, RFC.
[2] S. Fujii,et al. Detection Method for Anomaly Traffic Based on Alternations of Destination Hosts , 2005 .