Evolving Neuro-Fuzzy Inference System For Worm Detection In High-Speed Netwroks
| dc.contributor.author | Abdullah, Shubair Abdulkareem | |
| dc.date.accessioned | 2017-11-09T01:25:59Z | |
| dc.date.available | 2017-11-09T01:25:59Z | |
| dc.date.issued | 2014-11 | |
| dc.description.abstract | Internet worms are malicious programs spread rapidly over networks. They remain a big threat to the internet, as demonstrated by a number of large-scale worm outbreaks, such as Sasser, Storm, and Stuxnet worms. Moreover, every new wave of outbreak reveals rapid evolution in terms of sophistication, infection speed, and damage caused to the business. Unfortunately, the current worm detection research has not seen the same pace of advancement. Most of worm detection systems are unable to deal intelligently with worms especially in high-speed networks. In this thesis, a comprehensive system for worm detection and containment is presented. This system consists of two subsystems: worm detection and signature generation. The worm detection subsystem is an evolving neuro-fuzzy inference system, called kNN-based Evolving Neuro-Fuzzy Inference System, kENFIS for short. kENFIS depends on a new defined behavioral IP flow model for worms. It is the first evolving neuro-fuzzy inference system that employs kNN-based Evolving Fuzzy Clustering Method (kEFCM) to create and evolve fuzzy rules. kEFCM is an enhanced version of kNN algorithm, which is identified as the most accurate algorithm in terms of worm detection in this thesis. The signature generation subsystem is a new matching system that extracts obfuscated and non-obfuscated signatures, called Most Frequent Maximum String system (MFMS). It captures the malicious payloads only to extract the most frequent maximum string in the worm instances. The implemented algorithms are validated and evaluated through robust experiments. The results show that the proposed system offers higher efficiency and accuracy in revealing worm detection and containment. | en_US |
| dc.identifier.uri | http://hdl.handle.net/123456789/5255 | |
| dc.language.iso | en | en_US |
| dc.publisher | Universiti Sains Malaysia | en_US |
| dc.subject | Internet worms are malicious programs | en_US |
| dc.subject | spread rapidly over networks | en_US |
| dc.title | Evolving Neuro-Fuzzy Inference System For Worm Detection In High-Speed Netwroks | en_US |
| dc.type | Thesis | en_US |
Files
License bundle
1 - 1 of 1
Loading...
- Name:
- license.txt
- Size:
- 1.71 KB
- Format:
- Item-specific license agreed upon to submission
- Description: