Security

Spectral Flatness Measurements for Detection of C-Worms

Download Now Free registration required

Executive Summary

Active Worms such as Morris (1988), CodeRed (2001), Nimda (2001), Slammer worm (2003),Blaster (2003) and Witty (2004) had always caused large parts of the Internet to be temporarily inaccessible, costing both public and private sectors millions of dollars. The authors identified a hard to detect new class of worms like C-worms that has the ability to camouflage its propagation by intelligently manipulating its scanning traffic volume over time so that its propagation goes undetected by the existing worm detection schemes and file-sharing worms which propagate within a relatively smaller community.

  • Format: PDF
  • Size: 560.4 KB