Network-level Malware Detection. Mike McNett, Matthew Spear, Richard Barnes CS-851 – Malware 23 October 2004. Outline. Introduction: Design of a System for Real-Time Worm Detection Example 1: Detecting Early Worm Propagation through Packet Matching (DEWP)
Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.
Mike McNett, Matthew Spear, Richard Barnes
CS-851 – Malware
23 October 2004
Questions Being Considered:
Fast Detection of Scanning Worm Infection
Credit Based Connection Rate Limiting
Are there any serious flaws in this algorithm?
Science comes to the aid of network-level anomaly detection
Image courtesy of DISA