An overview about the polymorphic worms signatures

Raja A. Moftah; Abdelsalam M. Maatuk; Peter Plassmann; Shadi Aljawarneh

doi:10.1145/2832987.2833031

An overview about the polymorphic worms signatures

Raja A. Moftah, Abdelsalam M. Maatuk, Peter Plassmann, Shadi Aljawarneh

Faculty of Computing, Engineering and Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

2 Citations (Scopus)

Abstract

With the proliferation of the internet among casual users as well as businesses, the range and frequency of security threats have increased dramatically. One of these threats is a particular type of malware known as a polymorphic worm. This is a program that can mutate its appearance with each infection and spreads through the network via semantics-preserving code manipulation methods or self-encryption techniques. This paper describes the characteristics of polymorphic worms and then explains the most common forms of pattern based detection, such as Autograph.

Original language	English
Title of host publication	ICEMIS 2015 - International Conference on Engineering and MIS 2015
Publisher	Association for Computing Machinery
Volume	24-26-September-2015
ISBN (Electronic)	9781450334181
DOIs	https://doi.org/10.1145/2832987.2833031
Publication status	Published - 24 Sept 2015
Event	2015 International Conference on Engineering and MIS, ICEMIS 2015 - Istanbul, Turkey Duration: 24 Sept 2015 → 26 Sept 2015

Conference

Conference	2015 International Conference on Engineering and MIS, ICEMIS 2015
Country/Territory	Turkey
City	Istanbul
Period	24/09/15 → 26/09/15

Keywords

IDS
Pattern
Polymorphic Worms
Security
Vulnerability

Access to Document

10.1145/2832987.2833031

Cite this

@inproceedings{753742a5e7c34b6eb1747b9a5a145c2c,

title = "An overview about the polymorphic worms signatures",

abstract = "With the proliferation of the internet among casual users as well as businesses, the range and frequency of security threats have increased dramatically. One of these threats is a particular type of malware known as a polymorphic worm. This is a program that can mutate its appearance with each infection and spreads through the network via semantics-preserving code manipulation methods or self-encryption techniques. This paper describes the characteristics of polymorphic worms and then explains the most common forms of pattern based detection, such as Autograph.",

keywords = "IDS, Pattern, Polymorphic Worms, Security, Vulnerability",

author = "Moftah, {Raja A.} and Maatuk, {Abdelsalam M.} and Peter Plassmann and Shadi Aljawarneh",

year = "2015",

month = sep,

day = "24",

doi = "10.1145/2832987.2833031",

language = "English",

volume = "24-26-September-2015",

booktitle = "ICEMIS 2015 - International Conference on Engineering and MIS 2015",

publisher = "Association for Computing Machinery",

note = "2015 International Conference on Engineering and MIS, ICEMIS 2015 ; Conference date: 24-09-2015 Through 26-09-2015",

}

Moftah, RA, Maatuk, AM, Plassmann, P & Aljawarneh, S 2015, An overview about the polymorphic worms signatures. in ICEMIS 2015 - International Conference on Engineering and MIS 2015. vol. 24-26-September-2015, a29, Association for Computing Machinery, 2015 International Conference on Engineering and MIS, ICEMIS 2015, Istanbul, Turkey, 24/09/15. https://doi.org/10.1145/2832987.2833031

TY - GEN

T1 - An overview about the polymorphic worms signatures

AU - Moftah, Raja A.

AU - Maatuk, Abdelsalam M.

AU - Plassmann, Peter

AU - Aljawarneh, Shadi

PY - 2015/9/24

Y1 - 2015/9/24

N2 - With the proliferation of the internet among casual users as well as businesses, the range and frequency of security threats have increased dramatically. One of these threats is a particular type of malware known as a polymorphic worm. This is a program that can mutate its appearance with each infection and spreads through the network via semantics-preserving code manipulation methods or self-encryption techniques. This paper describes the characteristics of polymorphic worms and then explains the most common forms of pattern based detection, such as Autograph.

AB - With the proliferation of the internet among casual users as well as businesses, the range and frequency of security threats have increased dramatically. One of these threats is a particular type of malware known as a polymorphic worm. This is a program that can mutate its appearance with each infection and spreads through the network via semantics-preserving code manipulation methods or self-encryption techniques. This paper describes the characteristics of polymorphic worms and then explains the most common forms of pattern based detection, such as Autograph.

KW - IDS

KW - Pattern

KW - Polymorphic Worms

KW - Security

KW - Vulnerability

U2 - 10.1145/2832987.2833031

DO - 10.1145/2832987.2833031

M3 - Conference contribution

AN - SCOPUS:84988966529

VL - 24-26-September-2015

BT - ICEMIS 2015 - International Conference on Engineering and MIS 2015

PB - Association for Computing Machinery

T2 - 2015 International Conference on Engineering and MIS, ICEMIS 2015

Y2 - 24 September 2015 through 26 September 2015

ER -

An overview about the polymorphic worms signatures

Abstract

Conference

Keywords

Access to Document

Fingerprint

Cite this