Detecting Computer Worms in the Cloud

Abstract : Computer worms are very active and new sophisticated versions continuously appear. Signature-based detection methods work with a low false-positive rate, but previously knowledge about the threat is needed. Anomaly-based intrusion detection methods are able to detect new and unknown threats, but meaningful information for correct results is necessary. We propose an anomaly-based intrusion detection mechanism for the cloud which directly profits from the virtualization technologies in general. Our proposed anomaly detection system is isolated from spreading computer worm infections and it is able to detect unknown and new appearing computer worms. Using our approach, a spreading computer worm can be detected on the spreading behavior itself without accessing or directly influencing running virtual machines of the cloud.
Type de document :
Communication dans un congrès
David Hutchison; Takeo Kanade; Madhu Sudan; Demetri Terzopoulos; Doug Tygar; Moshe Y. Vardi; Gerhard Weikum; Jan Camenisch; Dogan Kesdogan; Josef Kittler; Jon M. Kleinberg; Friedemann Mattern; John C. Mitchell; Moni Naor; Oscar Nierstrasz; C. Pandu Rangan; Bernhard Steffen. International Workshop on Open Problems in Network Security (iNetSec), Jun 2011, Lucerne, Switzerland. Springer, Lecture Notes in Computer Science, LNCS-7039, pp.43-54, 2012, Open Problems in Network Security. 〈10.1007/978-3-642-27585-2_4〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01481505
Contributeur : Hal Ifip <>
Soumis le : jeudi 2 mars 2017 - 16:37:57
Dernière modification le : vendredi 3 mars 2017 - 11:11:38
Document(s) archivé(s) le : mercredi 31 mai 2017 - 16:17:03

Fichier

978-3-642-27585-2_4_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Sebastian Biedermann, Stefan Katzenbeisser. Detecting Computer Worms in the Cloud. David Hutchison; Takeo Kanade; Madhu Sudan; Demetri Terzopoulos; Doug Tygar; Moshe Y. Vardi; Gerhard Weikum; Jan Camenisch; Dogan Kesdogan; Josef Kittler; Jon M. Kleinberg; Friedemann Mattern; John C. Mitchell; Moni Naor; Oscar Nierstrasz; C. Pandu Rangan; Bernhard Steffen. International Workshop on Open Problems in Network Security (iNetSec), Jun 2011, Lucerne, Switzerland. Springer, Lecture Notes in Computer Science, LNCS-7039, pp.43-54, 2012, Open Problems in Network Security. 〈10.1007/978-3-642-27585-2_4〉. 〈hal-01481505〉

Partager

Métriques

Consultations de la notice

152

Téléchargements de fichiers

48