Serum system: An automatic curing system for worms and buffer overflow-based botnets

Li Han Chen, Fu Hau Hsu, Shih Jen Chen, Chia Jun Lin, Yan Ling Hwang

研究成果: 書貢獻/報告類型會議論文篇章同行評審

摘要

We propose an automatic defense system, called Serum System, against scanning worms. The homeland security department of a country can use Serum System to protect its Internet infrastructure. When an infecting host is infecting a Serum System host, called Serum System Server (SSS), the SSS automatically replaces the shellcode inside the infecting string with its code (called serum code) and then uses the modified string (called serum string) to counterattack the infecting host and take control of it. The serum code transforms the infecting host into a Serum System Client (SSC) that has the same functions as the SSS and is immune to the same worm. Therefore, infecting hosts attacking SSSs or SSCs will transform themselves to SSCs. We implemented Serum System on Linux. Our analyses show Serum System can automatically defeat related infected hosts.

原文???core.languages.en_GB???
主出版物標題Applied Science and Precision Engineering Innovation
頁面923-927
頁數5
DOIs
出版狀態已出版 - 2014
事件International Applied Science and Precision Engineering Conference 2013, ASPEC 2013 - NanTou, Taiwan
持續時間: 18 10月 201322 10月 2013

出版系列

名字Applied Mechanics and Materials
479-480
ISSN(列印)1660-9336
ISSN(電子)1662-7482

???event.eventtypes.event.conference???

???event.eventtypes.event.conference???International Applied Science and Precision Engineering Conference 2013, ASPEC 2013
國家/地區Taiwan
城市NanTou
期間18/10/1322/10/13

指紋

深入研究「Serum system: An automatic curing system for worms and buffer overflow-based botnets」主題。共同形成了獨特的指紋。

引用此