Security

Spectral Flatness Measurements for Detection of C-Worms

Date Added: Mar 2013
Format: PDF

Active Worms such as Morris (1988), CodeRed (2001), Nimda (2001), Slammer worm (2003),Blaster (2003) and Witty (2004) had always caused large parts of the Internet to be temporarily inaccessible, costing both public and private sectors millions of dollars. The authors identified a hard to detect new class of worms like C-worms that has the ability to camouflage its propagation by intelligently manipulating its scanning traffic volume over time so that its propagation goes undetected by the existing worm detection schemes and file-sharing worms which propagate within a relatively smaller community.