Real-Time Virus Detection System Using iNetmon Engine
|
Descargar SCORM
Este recurso ha sido solicitado 1 veces (0 veces en los últimos 31 días).
Para poder solicitar este recurso debe identificarse como usuario de la biblioteca
|
| |
Ver
Detalles del recurso
|
|
|
Real-Time Virus Detection System Using iNetmon Engine
|
| Id. |
46139424 |
| Idioma |
inglés
|
| Titulo |
Real-Time Virus Detection System Using iNetmon Engine |
| Autor(es) |
Sureswaran Ramadass
Azlan Bin Osman
Rahmat Budiarto
N. Sathiananthan
Ng Chin Keong
Choi Sy Jong
|
| Localización |
http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.14.1601
|
| Versión |
1.0 |
| Estado |
Final
|
| Descripción |
The fundamental problem with any network administration systems today is its ability to cope with the rising amount of virus intrusions. Currently available systems are only able to detect a virus after the network has been infected, therefore its non-real time. Depending on the malicious activities of the viruses, the detection will be carried out. Herewith, we are proposing a Real-Time Virus Detection system, which detects the arrival of virus intruders at the network layer rather than at the application layer. In this paper, we present an overview of the system design, which uses the iNetmon engine, Virus parser, Virus Matching Engine and alert mechanisms. Using the iNetmon engine, all packets traversing through the network nodes are captured; these packets are decoded and sent to Virus Matching Engine. Meanwhile, Virus parser will load the entire virus signature to memory. At the Virus Matching Engine, captured packet will be formatted to enhance matching speed. Then the formatted packet content will be scanned for virus information. Once the packet is known to contain virus or worm information, alert mechanism will alert the network administrator. Upon receiving this alert message, the administrator can now take necessary actions before the packet arrives at the destination.
|
| Tipo |
application/pdf
|
| Palabras clave |
Virus
|
| Tipo de recurso |
Texto Narrativo
|
| Tipo de Interactividad |
Expositivo
|
| Nivel de Interactividad |
muy bajo
|
| Audiencia |
Estudiante
Profesor
Autor
|
| Estructura |
Atomic |
| Coste |
no
|
| Copyright |
sí
|
|
Metadata may be used without restrictions as long as the oai identifier remains attached to it. |
| Formatos |
application/pdf
|
| Requerimientos técnicos |
Browser: Any
|
| Relación |
[IsBasedOn] http://www.qgpop.net/2003fukuoka/papers/B6-1.pdf
[References] 10.1.1.116.8880
[References] 10.1.1.119.399
[References] 10.1.1.50.2666
|
| Fecha de contribución |
21-jul-2009 |
| Contacto |
|
|
|
|
|
Valoración de los usuarios
No hay ninguna valoración para este recurso. Sea el primero en
valorar este recurso.
|
|
|
|
