Detection of Worm Propagation Engines in the System Call Domain using Colored Petri Nets.
Arnur G. TokhtabayevVictor A. SkorminAndrey M. DolgikhPublished in: IPCCC (2008)
Keyphrases
- colored petri nets
- false alarms
- detection method
- petri net
- worm detection
- automatic detection
- domain specific
- databases
- propagation model
- false positives
- automated detection
- detection rate
- object detection
- anomaly detection
- database
- domain ontology
- wave propagation
- network traffic
- detection accuracy
- change detection
- machine learning
- information retrieval
- genetic algorithm
- data structure
- domain independent
- information systems
- clustering algorithm
- domain knowledge