Skip to main content
SpringerLink
Log in

Early Warning for Network Worms

  • Conference paper
Computational Intelligence and Security (CIS 2005)

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 3802))

Included in the following conference series:

  • 1206 Accesses

Abstract

Network worms, very similar to viruses, are malicious programs that use vulnerabilities in software to spread between computers that are somehow connected using a computer network.

We remind that a computer should be understood broadly – in the near future, a worm might infect a mobile phone as easily as it now infects a personal desktop computer.

We have proposed a modular architecture for an early warning system. We also implemented a prototype system consisting of several detection and analysis modules. While the prototype was limited in nature, it meets the most of the requirements we have set for such a system.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Sommerville, I.: Software Engineering, 6th edn. Pearson Education Ltd, UK (2001)

    Google Scholar 

  2. Weaver, N., Paxson, V., Staniford, S.: A worst-case worm (2003) Silicon Defense Technical Report (2003), Available http://www.silicondefense.com/papers/worstcase.pdf

  3. Spafford, E.: The internet worm program: An analysis (1998) Purdue Technical Report CSD-TR-823 (1998)

    Google Scholar 

  4. Moore, D., Paxson, V., Savage, S., Shannon, C., Staniford, S., Weaver, N.: The spread of the sapphire/slammer worm (2003), Available http://www.caida.org/outreach/papers/2003/sapphire/sapphire.html

  5. Shannon, C., Moore, D.: The spread of the witty worm (2004), Available http://www.caida.org/analysis/security/witty/

  6. Weaver, N., Staniford, S., Paxson, V.: Very fast containment of scanning worms. In: Proceedings of the 13th Usenix Security Symposium, USA, Usenix (2004)

    Google Scholar 

  7. Jung, J., Paxson, V., Berger, A., Balakrishnan, H.: Fast portscan detection using sequential hypothesis testing. In: 2004 IEEE Symposium on Security and Privacy, USA. IEEE, Los Alamitos (2004)

    Google Scholar 

  8. Schechter, S., Jung, J., Berger, A.: Fast detection of scanning worm infections. In: Recent Advances in Intrusion Detection (RAID), USA (2004)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Helsinki University of Technology,  

    Antti Tikkanen & Teemupekka Virtanen

Authors
  1. Antti Tikkanen
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Teemupekka Virtanen
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Microelectronic Instiute, Xidian University, 710071, Xi’an, China

    Yue Hao

  2. Department of Computer Science, Hong Kong Baptist University, Kowloon Tong, Hong Kong

    Jiming Liu

  3. School of Computer Science and Technology, Xidian University, Xi’an, China

    Yu-Ping Wang

  4. Department of Computer Science, Hong Kong Baptist University, Hong Kong,  

    Yiu-ming Cheung

  5. School of Electrical and Electronic Engineering, University of Manchester, UK

    Hujun Yin

  6. Life Science Research Center, School of Electronic Engineering, Xidian University, 710071, Xi’an, Shaanxi, China

    Licheng Jiao

  7. Key Laboratory of Computer Networks and Information Security(Ministry of Education), Xidian University, 710071, Xi’an, China

    Jianfeng Ma

  8. National Laboratory of Antennas and Microwave Technology, Xidian University, 710071, Xi’an, Shanxi, P.R. China

    Yong-Chang Jiao

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Tikkanen, A., Virtanen, T. (2005). Early Warning for Network Worms. In: Hao, Y., et al. Computational Intelligence and Security. CIS 2005. Lecture Notes in Computer Science(), vol 3802. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11596981_157

Download citation

  • DOI: https://doi.org/10.1007/11596981_157

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-30819-5

  • Online ISBN: 978-3-540-31598-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation