未知蠕虫
未知蠕虫
实验证明,该检测方法能够快速有效地检测出未知网络蠕虫的爆发。
The current worm detection and prevention system is a passive one in which unknown worms can't be detected and prevented.当今的蠕虫检测防御系统都是被动的检测防御系统,只能进行事后处理,不能检测和防御未知蠕虫。
The worms' behavior item collection is described accurately by defining behavior vector structure, and the unknown worm behavior profile mining is optimized using genetic algorithms.通过自定义行为向量构造准确描述网络蠕虫行为的项目集,并利用遗传算法优化未知蠕虫行为模式挖掘结果。