| 基于最小二乘法的网络蠕虫检测方法 |
| |
| 引用本文: | 陈博,方滨兴,云晓春.基于最小二乘法的网络蠕虫检测方法[J].哈尔滨工业大学学报,2007,39(3):431-434. |
| |
| 作者姓名: | 陈博 方滨兴 云晓春 |
| |
| 作者单位: | 哈尔滨工业大学,计算机网络与信息安全技术研究中心,哈尔滨,150001;哈尔滨工业大学,计算机网络与信息安全技术研究中心,哈尔滨,150001;哈尔滨工业大学,计算机网络与信息安全技术研究中心,哈尔滨,150001 |
| |
| 基金项目: | 国家自然科学基金资助项目(60403033) |
| |
| 摘 要: | 分析了网络蠕虫的生命周期和传播模型,根据蠕虫的特性提出一种新的蠕虫检测方法,该方法首先监测网络上各主机的连接度,得到疑似感染蠕虫主机的数量.然后利用最小二乘法判别疑似感染蠕虫主机的数量变换是否符合蠕虫的传播模型.实验证明,该检测方法能够快速有效地检测出未知网络蠕虫的爆发.
|
| 关 键 词: | 蠕虫 网络监测 最小二乘法 早期检测 |
| 文章编号: | 0367-6234(2007)03-0431-04 |
| 修稿时间: | 2006-05-14 |
A new approach for early detecting internet worm based on least squares method |
| |
| CHEN Bo,FANG Bin-xing,YUN Xiao-chun.A new approach for early detecting internet worm based on least squares method[J].Journal of Harbin Institute of Technology,2007,39(3):431-434. |
| |
| Authors: | CHEN Bo FANG Bin-xing YUN Xiao-chun |
| |
| Affiliation: | 1.The Research Center of Computer Network and Information Security Technique;Harbin Institute of Technology;Harbin 150001;China |
| |
| Abstract: | The worm's behavior model and propagation model are presented.Then a new approach to early detection of Internet worms is provided.The method can be divided into two parts: monitoring computers' connection degree in metwork and detecting Internet worms using method of least squares.The experiment result proves that our approach is effectively and quickly to detect unknown worm. |
| |
| Keywords: | worm network monitoring least squares Method early detection |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
