Abstract:
We propose a behavior-based intrusion detection and response system for Internet worms called Lambent Anti-Worm System (LAWS). LAWS can detect the intruded services and i...Show MoreMetadata
Abstract:
We propose a behavior-based intrusion detection and response system for Internet worms called Lambent Anti-Worm System (LAWS). LAWS can detect the intruded services and influenced range automatically. Besides, it also can analyze the key information of the intrusion. We can prevent worm distribution and intrusion in advance via the information provided. In addition, to detecting and preventing the distribution of a well-known malicious worm, LAWS can also defend for future, unknown, or new malicious worms. Mobile agents will help LAWS to form a defense system for other LAW'S users over the Internet. The contribution of our system is to decrease the response time of attack and reduce the damaged range. At the same time, it also diminishes the damage and decreases the fixed cost.
Published in: 17th International Conference on Advanced Information Networking and Applications, 2003. AINA 2003.
Date of Conference: 29-29 March 2003
Date Added to IEEE Xplore: 08 April 2003
Print ISBN:0-7695-1906-7