摘要
目前,蠕虫已经成为了互联网络安全的最大威胁,蠕虫攻击、扫描技术经过不断的发展和改进,已经日趋智能化、隐蔽化。搜索引擎被人们用来在Internet上检索感兴趣的东西,同样也会被蠕虫利用进行攻击和传播。利用互联网络的搜索引擎进行攻击和传播的蠕虫,实现了隐蔽、小流量、准确地传播。文章首先分析了这类基于搜索引擎的蠕虫的特征,然后提出了用户检索模型和异常判定算法,经过实验证明,此种检测方法确实高效可行。
Nowadays,the worm becomes the biggest threat in the Internet,the method of propagation of worm is becoming more intelligent and enshrouded.Search engines are used to retrieve interesting things,meanwhile,they can be used by worm for propagation.Worms based on search engines implement enshrouded,precise propagation with small network traffic.ln this paper,we introduce the feature of this kind of worm,and then we propose a client search model and an anomalous detection algorithm.This method is proved to be of high efficiency by experiments.
出处
《计算机工程与应用》
CSCD
北大核心
2006年第7期112-115,共4页
Computer Engineering and Applications
基金
国家863高技术研究发展计划资助项目(编号:2001AA147010B)
