Issue No. 01 - January/February (2005 vol. 25)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MM.2005.1
John W. Lockwood , Washington University in St. Louis
Bharath Madhusudan , Washington University in St. Louis
Systems that secure networks against malicious code will be a part of critical Internet infrastructure in the future. This article presents the design and implementation of a system that automatically detects new worms in real time by monitoring all traffic on a network. The system uses field-programmable gate arrays (FPGAs) to scan packets for patterns of similar content and can automatically detect the outbreak of a new Internet worm. It instantly reports frequently occurring strings in packet payloads as likely signatures of the malicious software (malware).
John W. Lockwood, Bharath Madhusudan, "A Hardware-Accelerated System for Real-Time Worm Detection", IEEE Micro, vol. 25, no. , pp. 60-69, January/February 2005, doi:10.1109/MM.2005.1