NEDAC: A worm countermeasure mechanism

  • M.A. Ahmad
  • A.S. Magaji
  • S Dari
Keywords: Worm Detection, Malware, cyber defense

Abstract

This article presents an Internet worm countermeasure mechanism that uses DNS activities as a behavioural technique to detect worm propagation. The mechanism also uses a data-link containment solution to block traffic from an infected host. The concept has been demonstrated using a developed prototype and tested in a virtualised network environment. An empirical analysis of network worm propagation has been conducted to test the capabilities of the developed countermeasure mechanism. The results show that the developed mechanism is sensitive in containing Internet worms.

Keywords: Worm Detection, Malware, cyber defense

Published
2016-08-25
Section
Articles

Journal Identifiers


eISSN: 1597-6343