IEICE Trans. Inf. & Syst.
 2013
DOI: 10.1587/transinf.e96.d.1716
|View full text |Cite
|
Sign up to set email alerts
|

PC Worm Detection System Based on the Correlation between User Interactions and Comprehensive Network Behaviors

Jeongseok Seo
1
,
Sung Deok
2
,
Bin Zhu
3
et al.

Abstract: SUMMARYAnomaly-based worm detection is a complement to existing signature-based worm detectors. It detects unknown worms and fills the gap between when a worm is propagated and when a signature is generated and downloaded to a signature-based worm detector. A major obstacle for its deployment to personal computers (PCs) is its high false positive alarms since a typical PC user lacks the skill to handle exceptions flagged by a detector without much knowledge of computers. In this paper, we exploit the feature o… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1

Citation Types

0
2
0

Year Published

2019
2019
2019
2019

Publication Types

Select...
1

Relationship

0
1

Authors

Journals

citations
Cited by 1 publication
(2 citation statements)
references
References 19 publications
0
2
0
Order By: Relevance
“…Some works used the features such as packet rate, packet arrival time, packet size, payload, etc., to detect worms in their transferring phase [132-135, 137, 138, 140, 145-147, 153]. Host-level data are used in conjunction with packet-level and flow-level data because worms are malicious programs that directly execute at host-side [138,140]. Each kind of worms has different reflecting characteristics.…”
Section: Discussionmentioning
confidence: 99%
See 1 more Smart Citation

Security Data Collection and Data Analytics in the Internet: A Survey

Jing
1
,
Yan
2
,
Pedrycz
3
2019
IEEE Commun. Surv. Tutorials
101
0
44
0
View full textAdd to dashboardCite
“…Some works used the features such as packet rate, packet arrival time, packet size, payload, etc., to detect worms in their transferring phase [132-135, 137, 138, 140, 145-147, 153]. Host-level data are used in conjunction with packet-level and flow-level data because worms are malicious programs that directly execute at host-side [138,140]. Each kind of worms has different reflecting characteristics.…”
Section: Discussionmentioning
confidence: 99%
“…BINDER's detection method is incapable of detecting unknown worms and can be evaded by attackers with fake user events or infected normal programs. Seo et al [140] designed an improved detection method called PC-WDS based on the extend ideas proposed in BINDER. It applies sophisticated features to improve detection accuracy while reducing false alarms.…”
Section: B Machine Learning Against Worm Attacksmentioning
confidence: 99%

Security Data Collection and Data Analytics in the Internet: A Survey

Jing
1
,
Yan
2
,
Pedrycz
3
2019
IEEE Commun. Surv. Tutorials
101
0
44
0
View full textAdd to dashboardCite
scite logo

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Product
Browser ExtensionAssistant by sciteCitation Statement SearchReference CheckVisualizationsDashboardsExplore JournalsExplore OrganizationsExplore FundersEmbedding BadgeEmbedding Citation SearchPricing
Resources
BlogHelp & FAQAccessibility StatementAPI TermsFor Universities & GovernmentsFor ResearchersFor PublishersFor Corporate, Pharma & EnterpriseAuthor MarketingBecome an AffiliateGet an organization trial or quotescite Data & Services
About
News & PressCareersRead our PaperCoverage

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

BlogTerms and ConditionsAPI TermsPrivacy PolicyContactCookie PreferencesDo Not Sell or Share My Personal Information

Copyright © 2024 scite LLC. All rights reserved.

Made with 💙 for researchers

Part of the Research Solutions Family.