FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2296211046> ?p ?o ?g. }

• W2296211046 abstract "This dissertation develops techniques, based on monitoring network traffic, that automate signature generation for wide-spreading malicious payloads such as Internet worms. Fast signature detection is required to achieve effective content-based filtering. The main thesis is that content prevalence analysis in network payloads across distributed networks is a good basis for automated signature generation for wide-spreading malicious payloads, and can be performed without compromising the privacy of participating networks. Content-prevalence analysis extracts unique payload patterns that are identical and invariant over all the flows that convey a wide-spreading malicious payload. Distributed monitoring enables us to rapidly capture many sample payloads, thus expediting the signature generation. Extra care for privacy encourages more networks to participate in the distributed monitoring and makes the approach practical. The first part of this dissertation presents a system, Autograph , that generates network payload signatures for Internet worms by utilizing the content invariance and wide-spreading communication patterns of Internet worm traffic. Signature generation speed is improved further by extending Autograph to share port scanner lists with distributed Autograph monitors. Trace-driven simulation shows the fundamental trade-off between early generation of signatures for novel worms and specificity of the generated signatures. Distributed monitoring is a recognized technique in security to expedite worm detection. However, extra care for privacy must be taken. The second part of the dissertation presents two techniques for privacy-preserving distributed signature generation. HotItemID protects the data and owner privacy by using sampling techniques and hiding private data in a crowd. Another technique protects privacy using privacy-preserving multiset operation framework. The technique relies on a semantically secure homomorphic cryptosystem and arithmetic operations over polynomial representation of sets. Both techniques protect privacy based on the assumption that a payload appearing in multiple locations should not be private. The dissertation confirms the assumption by studying real network traffic traces, and shows that privacy-preserving distributed worm signature detection is feasible." @default.
• W2296211046 created "2016-06-24" @default.
• W2296211046 creator A5019426968 @default.
• W2296211046 creator A5029690882 @default.
• W2296211046 creator A5048476303 @default.
• W2296211046 date "2010-01-01" @default.
• W2296211046 modified "2023-09-26" @default.
• W2296211046 title "Privacy-preserving distributed, automated signature-based detection of new internet worms" @default.
• W2296211046 cites W1497332396 @default.
• W2296211046 cites W1498585374 @default.
• W2296211046 cites W1507645144 @default.
• W2296211046 cites W1510508184 @default.
• W2296211046 cites W1513710402 @default.
• W2296211046 cites W1514368868 @default.
• W2296211046 cites W1516506771 @default.
• W2296211046 cites W1520914943 @default.
• W2296211046 cites W1540548505 @default.
• W2296211046 cites W1541939527 @default.
• W2296211046 cites W1544406760 @default.
• W2296211046 cites W1547222988 @default.
• W2296211046 cites W1551618785 @default.
• W2296211046 cites W1553177637 @default.
• W2296211046 cites W1563221498 @default.
• W2296211046 cites W1605124321 @default.
• W2296211046 cites W1649901946 @default.
• W2296211046 cites W1660562555 @default.
• W2296211046 cites W1744212210 @default.
• W2296211046 cites W1785933978 @default.
• W2296211046 cites W191468885 @default.
• W2296211046 cites W1970705443 @default.
• W2296211046 cites W1994340575 @default.
• W2296211046 cites W1997601204 @default.
• W2296211046 cites W2005708967 @default.
• W2296211046 cites W2006508099 @default.
• W2296211046 cites W2031006315 @default.
• W2296211046 cites W2039390926 @default.
• W2296211046 cites W2051914605 @default.
• W2296211046 cites W2083477206 @default.
• W2296211046 cites W2087811006 @default.
• W2296211046 cites W2090640412 @default.
• W2296211046 cites W2099789730 @default.
• W2296211046 cites W2102399005 @default.
• W2296211046 cites W2103206157 @default.
• W2296211046 cites W2103647628 @default.
• W2296211046 cites W2114471387 @default.
• W2296211046 cites W2116065364 @default.
• W2296211046 cites W2120933731 @default.
• W2296211046 cites W2121243646 @default.
• W2296211046 cites W2123845384 @default.
• W2296211046 cites W2124365372 @default.
• W2296211046 cites W2132172731 @default.
• W2296211046 cites W2134006599 @default.
• W2296211046 cites W2141420453 @default.
• W2296211046 cites W2143824669 @default.
• W2296211046 cites W2148491003 @default.
• W2296211046 cites W2151996777 @default.
• W2296211046 cites W2158060559 @default.
• W2296211046 cites W2165100126 @default.
• W2296211046 cites W2170017018 @default.
• W2296211046 cites W2170313477 @default.
• W2296211046 cites W2288766236 @default.
• W2296211046 cites W2752651477 @default.
• W2296211046 cites W1533186666 @default.
• W2296211046 hasPublicationYear "2010" @default.
• W2296211046 type Work @default.
• W2296211046 sameAs 2296211046 @default.
• W2296211046 citedByCount "1" @default.
• W2296211046 countsByYear W22962110462013 @default.
• W2296211046 crossrefType "journal-article" @default.
• W2296211046 hasAuthorship W2296211046A5019426968 @default.
• W2296211046 hasAuthorship W2296211046A5029690882 @default.
• W2296211046 hasAuthorship W2296211046A5048476303 @default.
• W2296211046 hasConcept C110875604 @default.
• W2296211046 hasConcept C134066672 @default.
• W2296211046 hasConcept C136764020 @default.
• W2296211046 hasConcept C158379750 @default.
• W2296211046 hasConcept C2524010 @default.
• W2296211046 hasConcept C2779696439 @default.
• W2296211046 hasConcept C31258907 @default.
• W2296211046 hasConcept C33923547 @default.
• W2296211046 hasConcept C38652104 @default.
• W2296211046 hasConcept C41008148 @default.
• W2296211046 hasConceptScore W2296211046C110875604 @default.
• W2296211046 hasConceptScore W2296211046C134066672 @default.
• W2296211046 hasConceptScore W2296211046C136764020 @default.
• W2296211046 hasConceptScore W2296211046C158379750 @default.
• W2296211046 hasConceptScore W2296211046C2524010 @default.
• W2296211046 hasConceptScore W2296211046C2779696439 @default.
• W2296211046 hasConceptScore W2296211046C31258907 @default.
• W2296211046 hasConceptScore W2296211046C33923547 @default.
• W2296211046 hasConceptScore W2296211046C38652104 @default.
• W2296211046 hasConceptScore W2296211046C41008148 @default.
• W2296211046 hasLocation W22962110461 @default.
• W2296211046 hasOpenAccess W2296211046 @default.
• W2296211046 hasPrimaryLocation W22962110461 @default.
• W2296211046 hasRelatedWork W2803199352 @default.
• W2296211046 hasRelatedWork W2891085781 @default.
• W2296211046 hasRelatedWork W2899396117 @default.
• W2296211046 hasRelatedWork W2938223462 @default.
• W2296211046 hasRelatedWork W2964137040 @default.

• next