SCOPUS 정보 검색 플랫폼

Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06

Volumn 2006, Issue , 2006, Pages 125-137

Design space and analysis of worm defense strategies

(4) Brumley, David a Liu, Li Hao a Poosankam, Pongsin a Song, Dawn a

a CARNEGIE MELLON UNIVERSITY (United States)

Author keywords

Antibody; Blacklisting; Defense strategy analysis; Local containment; Proactive protection; Worm propagation; Worm taxonomy; Worms

Indexed keywords

BLACKLISTING; DEFENSE STRATEGY ANALYSIS; LOCAL CONTAINMENT; PROACTIVE PROTECTION; WORM PROPAGATION; WORM TAXONOMY;

ABSTRACTING; MATHEMATICAL MODELS; PARAMETER ESTIMATION; SECURITY OF DATA; TAXONOMIES;

COMPUTER WORMS;

EID: 33751035317 PISSN: None EISSN: None Source Type: Conference Proceeding
DOI: 10.1145/1128817.1128837 Document Type: Conference Paper

Times cited : (21)

References (32)

1
- 34247333250
- PaX. http://pax.grsecurity.net/.
- PaX. http

2
- 84960830448
- Intrusion detection: Randomized instruction set emulation to disrupt binary code injection attacks
- October
- E. G. Barrantes, D. H. Ackley, S. Forrest, T. S. Palmer, D. Stefanovic, and D. D. Zovi. Intrusion detection: Randomized instruction set emulation to disrupt binary code injection attacks. In 10th ACM International Conference on Computer and Communications Security (CCS), October 2003.
- (2003) 10th ACM International Conference on Computer and Communications Security (CCS)
- Barrantes, E.G.¹ Ackley, D.H.² Forrest, S.³ Palmer, T.S.⁴ Stefanovic, D.⁵ Zovi, D.D.⁶

3
- 16644362894
- Randomized instruction set emulation
- E. G. Barrantes, D. H. Ackley, S. Forrest, and D. Stefanovic. Randomized instruction set emulation. ACM Transactions on Information and System Security, 8(1):3-40, 2005.
- (2005) ACM Transactions on Information and System Security , vol.8 , Issue.1 , pp. 3-40
- Barrantes, E.G.¹ Ackley, D.H.² Forrest, S.³ Stefanovic, D.⁴

4
- 84862209017
- Address obfuscation: An efficient approach to combat a broad range of memory error exploits
- S. Bhatkar, D. C. DuVarney, and R. Sekar. Address obfuscation: An efficient approach to combat a broad range of memory error exploits. In Proceedings of 12th USENIX Security Symposium, 2003.
- (2003) Proceedings of 12th USENIX Security Symposium
- Bhatkar, S.¹ DuVarney, D.C.² Sekar, R.³

5
- 84954188728
- Efficient techniques for comprehensive protection from memory error exploits
- S. Bhatkar, R. Sekar, and D. C. DuVarney. Efficient techniques for comprehensive protection from memory error exploits. In Proceedings of the 14th USENIX Security Symposium, 2005.
- (2005) Proceedings of the 14th USENIX Security Symposium
- Bhatkar, S.¹ Sekar, R.² DuVarney, D.C.³

6
- 24344460817
- Z. Chen, L. Gao, and K. Kwiat. Modeling the spread of active worms. 2003.
- (2003) Modeling the spread of active worms
- Chen, Z.¹ Gao, L.² Kwiat, K.³

7
- 14944374640
- Mitigating buffer overflows by operating system randomization
- Technical report, Carnegie Mellon University
- M. Chew and D. Song. Mitigating buffer overflows by operating system randomization. Technical report, Carnegie Mellon University, 2002.
- (2002)
- Chew, M.¹ Song, D.²

8
- 85009448253
- Poiritguard: Protecting pointers from buffer overflow vulnerabilities
- C. Cowan, S. Beattie, J. Johansen, and P. Wagle. Poiritguard: Protecting pointers from buffer overflow vulnerabilities. In Proceedings of the 12th USENIX Security Symposium, 2003.
- (2003) Proceedings of the 12th USENIX Security Symposium
- Cowan, C.¹ Beattie, S.² Johansen, J.³ Wagle, P.⁴

9
- 34247374193
- Center for Cybersecurity White Paper, October 2002
- D. C. DuVarney, R. Sekar, and Y.-J. Lin. Benign software mutations: A novel approach to protect against large-scale network attacks. Center for Cybersecurity White Paper, October 2002.
- Benign software mutations: A novel approach to protect against large-scale network attacks
- DuVarney, D.C.¹ Sekar, R.² Lin, Y.-J.³

10
- 0030697765
- Building diverse computer systems
- S. Forrest, A. Somayaji, and D. H. Ackley. Building diverse computer systems. In Proceedings of 6th workshop on Hot Topics in operating Systems, 1997.
- (1997) Proceedings of 6th workshop on Hot Topics in operating Systems
- Forrest, S.¹ Somayaji, A.² Ackley, D.H.³

11
- 0034486891
- The Mathematics of Infectious Diseases
- H. W. Hethcote. The Mathematics of Infectious Diseases. SIAM Review, 42(4):599-653, 2000.
- (2000) SIAM Review , vol.42 , Issue.4 , pp. 599-653
- Hethcote, H.W.¹

12
- 14844317200
- Countering code-injection attacks with instruction-set randomization
- October
- G. S. Kc, A. D. Keromytis, and V. Prevelakis. Countering code-injection attacks with instruction-set randomization. In 10th ACM International Conference on Computer and Communications Security (CCS), October 2003.
- (2003) 10th ACM International Conference on Computer and Communications Security (CCS)
- Kc, G.S.¹ Keromytis, A.D.² Prevelakis, V.³

13
- 85084163246
- Autograph: Toward automated, distributed worm signature detection
- August
- H.-A. Kim and B. Karp. Autograph: toward automated, distributed worm signature detection. In Proceedings of the 13th USENIX Security Symposium, August 2004.
- (2004) Proceedings of the 13th USENIX Security Symposium
- Kim, H.-A.¹ Karp, B.²

14
- 33646048960
- Honeycomb - creating intrusion detection signatures using horieypots
- November
- C. Kreibich and J. Crowcroft. Honeycomb - creating intrusion detection signatures using horieypots. In Proceedings of the Second Workshop on Hot Topics in Networks (UotNets-11), November 2003.
- (2003) Proceedings of the Second Workshop on Hot Topics in Networks (UotNets-11)
- Kreibich, C.¹ Crowcroft, J.²

15
- 34247381903
- M. Liljenstam and D. Nicol. Comparing passive and active worm defenses. 2004.
- (2004) Comparing passive and active worm defenses
- Liljenstam, M.¹ Nicol, D.²

16
- 0042474173
- Internet quarantine: Requirements for containing self-propagating code
- March
- D. Moore, V. Paxson, C. Shannon, G. M. Voelker, and S. Savage. Internet quarantine: Requirements for containing self-propagating code. In Proceedings of IEEE INFOCOM, March 2003.
- (2003) Proceedings of IEEE INFOCOM
- Moore, D.¹ Paxson, V.² Shannon, C.³ Voelker, G.M.⁴ Savage, S.⁵

17
- 0742276097
- Inside the Slammer worm
- July
- D. Moore, S. Savage, C. Shannon, S. Stanilbrd, and N. Weaver. Inside the Slammer worm. IEEE Security and Privacy, July 2003.
- (2003) IEEE Security and Privacy
- Moore, D.¹ Savage, S.² Shannon, C.³ Stanilbrd, S.⁴ Weaver, N.⁵

18
- 0042536226
- Code-Red: A case study on the spread and victims of an internet worm
- France, November
- D. Moore, C. Shannon, and J. Brown. Code-Red: a case study on the spread and victims of an internet worm. In Proceedings of ACM/USENIX Internet Measurement Workshop, France, November 2002.
- (2002) Proceedings of ACM/USENIX Internet Measurement Workshop
- Moore, D.¹ Shannon, C.² Brown, J.³

19
- 27544498978
- Polygraph: Automatically generating signatures for polymorphic worms
- May
- J. Newsorne, B. Karp, and D. Song. Polygraph: Automatically generating signatures for polymorphic worms. In Proceedings of the IEEE Symposium on Security and Privacy, May 2005.
- (2005) Proceedings of the IEEE Symposium on Security and Privacy
- Newsorne, J.¹ Karp, B.² Song, D.³

20
- 56349146235
- Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software
- Technical Report CMU-CS-04-140, Carnegie Mellon University
- J. Newsome and D. Song. Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software. Technical Report CMU-CS-04-140, Carnegie Mellon University, 2004.
- (2004)
- Newsome, J.¹ Song, D.²

21
- 79953672829
- Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software
- February
- J. Newsome and D. Song. Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software. In Proceedings of the 12th Annual Network and Distributed Systems Security Symposium, February 2005.
- (2005) Proceedings of the 12th Annual Network and Distributed Systems Security Symposium
- Newsome, J.¹ Song, D.²

22
- 14944359480
- A hybrid quarantine defense
- Washington, DC, USA
- P. Porras, L. Briesemeister, K. Skinner, K. Levitt, J. Rowe, arid Y.-C. A. Ting. A hybrid quarantine defense. In Proceedings of the 2004 ACM Workshop on Rapid Malcode (WORM), Washington, DC, USA, 2004.
- (2004) Proceedings of the 2004 ACM Workshop on Rapid Malcode (WORM)
- Porras, P.¹ Briesemeister, L.² Skinner, K.³ Levitt, K.⁴ Rowe, J.⁵ arid, Y.-C.⁶ Ting, A.⁷

23
- 14844328033
- On the effectiveness of address-space randomization
- October
- H. Shacham, M. Page, B. Pfaff, E.-J. Goh, N. Modadugu, and D. Boneh. On the effectiveness of address-space randomization. In Proceedings of the 11th ACM Conference on Computer and Communications Security, October 2004.
- (2004) Proceedings of the 11th ACM Conference on Computer and Communications Security
- Shacham, H.¹ Page, M.² Pfaff, B.³ Goh, E.-J.⁴ Modadugu, N.⁵ Boneh, D.⁶

24
- 30344459996
- Countering network worms through automatic patch generation
- S. Sidiroglou and A. D. Keromytis. Countering network worms through automatic patch generation. In Proceedings of IEEE Symposium on Security and Privacy, 2005.
- (2005) Proceedings of IEEE Symposium on Security and Privacy
- Sidiroglou, S.¹ Keromytis, A.D.²

25
- 84991765629
- Automated worm fingerprinting
- December
- S. Singh, C. Estan, G. Varghese, and S. Savage. Automated worm fingerprinting. In Proceedings of the 6th ACM/USENIX Symposium on Operating System Design and Implementation (OSDI), December 2004.
- (2004) Proceedings of the 6th ACM/USENIX Symposium on Operating System Design and Implementation (OSDI)
- Singh, S.¹ Estan, C.² Varghese, G.³ Savage, S.⁴

26
- 84906818067
- Where's the feeb? the effectiveness of instruction set randomization
- August
- N. Sovarel, D. Evans, and N. Paul. Where's the feeb? the effectiveness of instruction set randomization. In 14th USENIX Security Symposium, August 2005.
- (2005) 14th USENIX Security Symposium
- Sovarel, N.¹ Evans, D.² Paul, N.³

27
- 85084162258
- How to Own the internet in your spare time
- August
- S. Stamford, V. Paxson, and N. Weaver. How to Own the internet in your spare time. In Proceedings of 11th USENIX Security Symposium, August 2002.
- (2002) Proceedings of 11th USENIX Security Symposium
- Stamford, S.¹ Paxson, V.² Weaver, N.³

28
- 84860603040
- Implementing and testing a virus throttle
- August
- J. Twycross and M. M. Williamson. Implementing and testing a virus throttle. In Proceedings of 12th USENIX Security Symposium, August 2003.
- (2003) Proceedings of 12th USENIX Security Symposium
- Twycross, J.¹ Williamson, M.M.²

29
- 84948951525
- Throttling viruses: Restricting propagation to defeat malicious mobile code
- M. M. Williamson. Throttling viruses: Restricting propagation to defeat malicious mobile code. In Proceedings of the 18th Annual Computer Security Applications Conference, 2002.
- (2002) Proceedings of the 18th Annual Computer Security Applications Conference
- Williamson, M.M.¹

30
- 27644552867
- Transparent runtime randomization for security
- Technical report, Center for Reliable and Higher Performance Computing, University of Illinois at Urbana-Champaign, May
- J. Xu, Z. Kalbarczyk, and R. K. Iyer. Transparent runtime randomization for security. Technical report, Center for Reliable and Higher Performance Computing, University of Illinois at Urbana-Champaign, May 2003.
- (2003)
- Xu, J.¹ Kalbarczyk, Z.² Iyer, R.K.³

31
- 28044469549
- The monitoring and early detection of internet worms
- To appear
- C. Zou, W. Gong, D. Towsley, and L. Gao. The monitoring and early detection of internet worms. IEEE/ACM Transaction on Networking, To appear.
- IEEE/ACM Transaction on Networking
- Zou, C.¹ Gong, W.² Towsley, D.³ Gao, L.⁴

32
- 33646430335
- On the performance of internet worm scanning strategies
- To appear
- C. Zou, D. Towsley, and W. Gong. On the performance of internet worm scanning strategies. Journal of Performance Evaluation, To appear.
- Journal of Performance Evaluation
- Zou, C.¹ Towsley, D.² Gong, W.³

* 이 정보는 Elsevier사의 SCOPUS DB에서 KISTI가 분석하여 추출한 것입니다.