Worm Intrusion Alarm Modeling Based on Network Traffic Character

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Lu Guang Articles by Yu Fei Articles by Guangxue Yue Articles by Miaoliang Zhu

2006 First International Multi-Symposiums on Computer and Computational Sciences

Hangzhou, Zhejiang, China

June 20-June 24

ISBN: 0-7695-2581-4

	ASCII Text	x
	Lu Guang, Yu Fei, Guangxue Yue, Miaoliang Zhu, "Worm Intrusion Alarm Modeling Based on Network Traffic Character," Computer and Computational Sciences, International Multi-Symposiums on, vol. 2, pp. 142-147, 2006 First International Multi-Symposiums on Computer and Computational Sciences, 2006.

	BibTex	x
	@article{ 10.1109/IMSCCS.2006.287, author = {Lu Guang and Yu Fei and Guangxue Yue and Miaoliang Zhu}, title = {Worm Intrusion Alarm Modeling Based on Network Traffic Character}, journal ={Computer and Computational Sciences, International Multi-Symposiums on}, volume = {2}, year = {2006}, isbn = {0-7695-2581-4}, pages = {142-147}, doi = {http://doi.ieeecomputersociety.org/10.1109/IMSCCS.2006.287}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer and Computational Sciences, International Multi-Symposiums on TI - Worm Intrusion Alarm Modeling Based on Network Traffic Character SN - 0-7695-2581-4 SP142 EP147 A1 - Lu Guang, A1 - Yu Fei, A1 - Guangxue Yue, A1 - Miaoliang Zhu, PY - 2006 KW - Worm KW - Self-Similarity KW - Intrusion Alarm KW - Network Traffic Character VL - 2 JA - Computer and Computational Sciences, International Multi-Symposiums on ER -

Lu Guang, Zhejiang University, China

Yu Fei, Graduate School of Chinese Academy of Sciences, China

Guangxue Yue, Hunan University, China

Miaoliang Zhu, Zhejiang University, China

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/IMSCCS.2006.287

The research community is interested in finding effective methods to detect network traffic anomalies such as the propagation of a new worm, and to raise alarm in time. In this paper we research the principle that the number of network traffic can affect self-similarity of network traffics, and analyze the variety of self-similarity caused by abnormal network traffic. We propose a network traffic model on normal behaviors of users. An approach, which is applied to determine whether or not abnormal network traffic exists by comparing Hurst parameter with predefined threshold, is also presented. At last, implementation of network worm detecting agent in NP is described. Results of evaluation show that detecting agent performs very well in test-bed.

Index Terms:

Worm, Self-Similarity, Intrusion Alarm, Network Traffic Character

Citation:

Lu Guang, Yu Fei, Guangxue Yue, Miaoliang Zhu, "Worm Intrusion Alarm Modeling Based on Network Traffic Character," imsccs, vol. 2, pp.142-147, 2006 First International Multi-Symposiums on Computer and Computational Sciences, 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.