Scenario Based Worm Trace Pattern Identification Technique
The number of malware variants is growing tremendously and the study of malware attacks on the Internet is still a demanding research domain. In this research, various logs from different OSI layer are explore to identify the traces leave on the attacker and victim logs, and the attack worm trace p...
Saved in:
| Main Authors: | , , , , , |
|---|---|
| Format: | Article |
| Language: | en |
| Published: |
LJS Publisher and IJCSIS Press
2010
|
| Subjects: | |
| Online Access: | http://eprints.utem.edu.my/id/eprint/79/1/1002.1678.pdf http://eprints.utem.edu.my/id/eprint/79/ http://sites.google.com/site/ijcsis/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832715929809584128 |
|---|---|
| author | Selamat, S. R. Yusof, R. Sahib, S. Mas'ud, M. Z. Roslan, I. Abdollah, M. F. |
| author_facet | Selamat, S. R. Yusof, R. Sahib, S. Mas'ud, M. Z. Roslan, I. Abdollah, M. F. |
| author_sort | Selamat, S. R. |
| building | UTEM Library |
| collection | Institutional Repository |
| content_provider | Universiti Teknikal Malaysia Melaka |
| content_source | UTEM Institutional Repository |
| continent | Asia |
| country | Malaysia |
| description | The number of malware variants is growing tremendously and the study of malware attacks on the Internet is still a demanding research domain. In this research, various
logs from different OSI layer are explore to identify the traces leave on the attacker and victim logs, and the attack worm trace pattern are establish in order to reveal true attacker or victim.For the purpose of this paper, it will only concentrate on cybercrime that caused by malware network intrusion and used the traditional worm namely blaster worm variants. This research creates the concept of trace pattern by fusing the attacker’s and victim’s perspective. Therefore, the objective of this paper is to propose on attacker’s, victim’s and multi-step(attacker/victim)’s trace patterns by combining both
perspectives. These three proposed worm trace patterns can be extended into research areas in alert correlation and computer forensic investigation. |
| format | Article |
| id | my.utem.eprints-79 |
| institution | Universiti Teknikal Malaysia Melaka |
| language | en |
| publishDate | 2010 |
| publisher | LJS Publisher and IJCSIS Press |
| record_format | eprints |
| spelling | my.utem.eprints-792021-09-19T17:48:15Z http://eprints.utem.edu.my/id/eprint/79/ Scenario Based Worm Trace Pattern Identification Technique Selamat, S. R. Yusof, R. Sahib, S. Mas'ud, M. Z. Roslan, I. Abdollah, M. F. Q Science (General) The number of malware variants is growing tremendously and the study of malware attacks on the Internet is still a demanding research domain. In this research, various logs from different OSI layer are explore to identify the traces leave on the attacker and victim logs, and the attack worm trace pattern are establish in order to reveal true attacker or victim.For the purpose of this paper, it will only concentrate on cybercrime that caused by malware network intrusion and used the traditional worm namely blaster worm variants. This research creates the concept of trace pattern by fusing the attacker’s and victim’s perspective. Therefore, the objective of this paper is to propose on attacker’s, victim’s and multi-step(attacker/victim)’s trace patterns by combining both perspectives. These three proposed worm trace patterns can be extended into research areas in alert correlation and computer forensic investigation. LJS Publisher and IJCSIS Press 2010-01 Article NonPeerReviewed application/pdf en http://eprints.utem.edu.my/id/eprint/79/1/1002.1678.pdf Selamat, S. R. and Yusof, R. and Sahib, S. and Mas'ud, M. Z. and Roslan, I. and Abdollah, M. F. (2010) Scenario Based Worm Trace Pattern Identification Technique. (IJCSIS) International Journal of Computer Science and Information Security, 7 (1). pp. 1-9. ISSN 1947-5500 http://sites.google.com/site/ijcsis/ |
| spellingShingle | Q Science (General) Selamat, S. R. Yusof, R. Sahib, S. Mas'ud, M. Z. Roslan, I. Abdollah, M. F. Scenario Based Worm Trace Pattern Identification Technique |
| title | Scenario Based Worm Trace Pattern Identification Technique |
| title_full | Scenario Based Worm Trace Pattern Identification Technique |
| title_fullStr | Scenario Based Worm Trace Pattern Identification Technique |
| title_full_unstemmed | Scenario Based Worm Trace Pattern Identification Technique |
| title_short | Scenario Based Worm Trace Pattern Identification Technique |
| title_sort | scenario based worm trace pattern identification technique |
| topic | Q Science (General) |
| url | http://eprints.utem.edu.my/id/eprint/79/1/1002.1678.pdf http://eprints.utem.edu.my/id/eprint/79/ http://sites.google.com/site/ijcsis/ |
| url_provider | http://eprints.utem.edu.my/ |