Polymorphic Worm Detection by Analyzing Maximum Length of Instruction Sequence in Network Packets.
Kohei TataraYoshiaki HoriKouichi SakuraiPublished in: ARES (2009)
Keyphrases
- worm detection
- false alarms
- packet size
- traffic analysis
- intrusion detection
- ip address
- communication networks
- maximum number
- network management
- network design
- network layer
- state information
- protocol stack
- neighboring nodes
- data mining
- network traffic
- network structure
- peer to peer
- ip addresses
- false positive and false negative