Full Text Available
Note: Clicking the button above will open the full text document at the original institutional repository in a new window.
Automated signature generation for Zero-day polymorphic worms using a Double-honeynet
Includes bibliographical references.
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Thesis |
| Language: | English |
| Published: |
Department of Electrical Engineering
2015
|
| Subjects: | |
| Tags: |
No Tags, Be the first to tag this record!
|
| _version_ | 1867614191120023552 |
|---|---|
| access_status_str | Open Access |
| author | Mohammed, Mohssen M Z E |
| author2 | Chan, H Anthony |
| author_browse | Chan, H Anthony Mohammed, Mohssen M Z E |
| author_facet | Chan, H Anthony Mohammed, Mohssen M Z E |
| author_sort | Mohammed, Mohssen M Z E |
| collection | Thesis |
| description | Includes bibliographical references. |
| format | Thesis |
| id | oai:open.uct.ac.za:11427/11233 |
| institution | University of Cape Town (South Africa) |
| language | eng |
| last_indexed | 2026-06-10T12:48:07.027Z |
| license_str | Not specified — see source repository |
| provenance_str_mv | Harvested via OAI-PMH from UCTD — University of Cape Town Open Access Repository |
| publishDate | 2015 |
| publishDateRange | 2015 |
| publishDateSort | 2015 |
| publisher | Department of Electrical Engineering |
| publisherStr | Department of Electrical Engineering |
| record_format | dspace |
| source_str | UCTD — University of Cape Town Open Access Repository |
| spelling | oai:open.uct.ac.za:11427/11233 Automated signature generation for Zero-day polymorphic worms using a Double-honeynet Mohammed, Mohssen M Z E Chan, H Anthony Electrical Engineering Includes bibliographical references. This thesis proposes an accurate system for signature generation for Zero-day polymorphic worms. Thesis consists of two parts: In part one, polymorphic worm instances are collected by designing a novel Double-honeynet system, which is able to detect new worms that have not been seen before. Unlimited honeynet outbound connections are introduced to collect all polymorphic worm instances. Therefore this system produces accurate worm signatures. In part two, signatures are generated for the polymorphic worms that are collected by the Double-honeynet system. Both a Modified Knuth-Morris-Pratt (MKMP) Algorithm, which is string matching based, and a Modified Principal Component Analysis (MPCA), which is statistics based, are used. 2015-01-04T14:20:13Z 2015-01-04T14:20:13Z 2012 Doctoral Thesis Doctoral PhD http://hdl.handle.net/11427/11233 eng application/pdf Department of Electrical Engineering Faculty of Engineering and the Built Environment University of Cape Town |
| spellingShingle | Electrical Engineering Mohammed, Mohssen M Z E Automated signature generation for Zero-day polymorphic worms using a Double-honeynet |
| thesis_degree_str | Doctoral |
| title | Automated signature generation for Zero-day polymorphic worms using a Double-honeynet |
| title_full | Automated signature generation for Zero-day polymorphic worms using a Double-honeynet |
| title_fullStr | Automated signature generation for Zero-day polymorphic worms using a Double-honeynet |
| title_full_unstemmed | Automated signature generation for Zero-day polymorphic worms using a Double-honeynet |
| title_short | Automated signature generation for Zero-day polymorphic worms using a Double-honeynet |
| title_sort | automated signature generation for zero day polymorphic worms using a double honeynet |
| topic | Electrical Engineering |
| url | http://hdl.handle.net/11427/11233 |
| work_keys_str_mv | AT mohammedmohssenmze automatedsignaturegenerationforzerodaypolymorphicwormsusingadoublehoneynet |