Network-based malcode detection technology

Network-based malcode detection technology

Following the analysis for traditional distributed IDS,disadvantages that applying structure of multiple engine and small rules set to detect network-level malcode were pointed out,which is based on detailed protocol decoding.Detection model and anti-malcode markup language of network-level malcode...

Full description

Saved in:
Bibliographic Details
Main Authors: WU Bing1, YUN Xiao-chun2, GAO Qi1
Format: Article
Language:zho
Published: Editorial Department of Journal on Communications 2007-01-01
Series:Tongxin xuebao
Subjects:
computer network
malcode detection
detection model
pattern-set optimization
Online Access:http://www.joconline.com.cn/zh/article/74656974/
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Following the analysis for traditional distributed IDS,disadvantages that applying structure of multiple engine and small rules set to detect network-level malcode were pointed out,which is based on detailed protocol decoding.Detection model and anti-malcode markup language of network-level malcode were designed for single engine and big rules set.The characteristics of network data flow were analyzed.By optimization of patterns,frequent collisions between suffix with data flow and unbalanced branched of chained list were avoided.The efficiency by using WM algorithm to detect malcode on network level can be remarkably increased.
ISSN:1000-436X

Similar Items