Automated polymorphic worm signature generation approach based on seed-extending

Automated polymorphic worm signature generation approach based on seed-extending

A polymorphic worm signature generation approach based on seed-extending,SESG,was proposed.Firstly,algorithm SESG puts all sequences into a queue based on their weight.Seed sequence in the queue is extended,and all kinds of worm sequences and noise sequences are classified.Finally,worm signature is...

Full description

Saved in:
Bibliographic Details
Main Authors: Jie WANG, Xiao-xian HE
Format: Article
Language:zho
Published: Editorial Department of Journal on Communications 2014-09-01
Series:Tongxin xuebao
Subjects:
nformation security
seed-extending algorithm
polymorphic worm
worm detection
worm signature
Online Access:http://www.joconline.com.cn/zh/article/doi/10.3969/j.issn.1000-436x.2014.09.002/
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:A polymorphic worm signature generation approach based on seed-extending,SESG,was proposed.Firstly,algorithm SESG puts all sequences into a queue based on their weight.Seed sequence in the queue is extended,and all kinds of worm sequences and noise sequences are classified.Finally,worm signature is generated from classified worm sequences.Experiments are run to test SESG and compared with other approaches.Experiment results show that SESG can classify worm sequences and noise sequences from suspicious flow pool over other existed approaches,which can generate effective worm signature more easily.
ISSN:1000-436X

Similar Items