Tai-Kuo Woo scite author profile

Abstract-Fast spreading worms are a reality, as amply demonstrated by worms such as Slammer, which reached its peak propagation in a matter of minutes. With these kinds of fast spreading worms, the traditional approach of signature-based detection is no longer sufficient. Specifically, these worms can infect all vulnerable hosts well before a signature is available. To counter them, we must devise fast detection algorithms that can detect new worms without signatures as they first begin to appear. We present the design and evaluation of such an algorithm in this paper.The key to the algorithm is the identification of certain invariant characteristics of worm propagation. Specifically, we are able to demonstrate using real network traces how worm propagation can perturb the arrival process distribution of unsolicited packets. Our algorithm employs a novel two-step procedure that combines a first stage change point detection with a second stage growth rate inference to confirm the existence of a worm.To evaluate the algorithm, we have applied it to multi-year network traces that cover many of the major worm outbreaks in recent years, including Slammer, Witty, Nimda and Blaster. In all cases, the new algorithm is able to detect the worm within a very short time, well before significant infection has taken place.

show abstract

A Comparison of Various Respiratory System Models Based on Parameter Estimates From Impulse Oscillometry Data

Woo

Diong

Mansfield

et al.

View full text Add to dashboard Cite

Impulse oscillometry offers an advantage over spirometry when conducting pulmonary function tests. Not only does it require minimal patient cooperation, it provides useful data in a form amenable to engineering methods. In particular, the data can be used to obtain parameter estimates for electric circuit-based models of the respiratory system, which can in turn aid the detection and diagnosis of various diseases/pathologies. Of the six models analyzed during this study, the DuBois model and a newly proposed extended RIC model seem to provide the most robust parameter estimates for our entire data set of 106 subjects with various respiratory ailments such as asthma and chronic obstructive pulmonary disease. Such a diagnostic approach, relying on estimated parameter values, may require additional measures to ensure proper identification of diseases/pathologies but the preliminary results are promising.

show abstract

A more efficient generalization of Peterson's mutual exclusion algorithm

Block

Woo

1990

Information Processing Letters

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Tai-Kuo Woo

On the Detection of Signaling DoS Attacks on 3G Wireless Networks

Resource allocation in a dynamically partitionable bus network using a graph coloring algorithm

Design and Evaluation of a Fast and Robust Worm Detection Algorithm

A Comparison of Various Respiratory System Models Based on Parameter Estimates From Impulse Oscillometry Data

A more efficient generalization of Peterson's mutual exclusion algorithm

Contact Info

Product

Resources

About