Name
Abstract | ||
|---|---|---|
Monitoring network communication is one of the primary methods used for years to combat network threats. Recent attacks on corporations networks shows that classical perimeter centric detection methods, based on the analysis of signatures, statistical anomalies or heuristic methods aimed at protection from the outside do not work, and are easily circumvented by new generations of malware. Increasingly apparent becomes the need to create additional internal line of defense, aimed at detecting and blocking what penetrated inside and operates in a network environment. The paper presents such solution - a new method for threats detection, based on novel principle - local monitoring and analysis of the system and application's network activity, detecting traces of malware operation to the level of process running on the system. |
Year | DOI | Venue |
|---|---|---|
2014 | 10.1007/978-3-319-07941-7_14 | Communications in Computer and Information Science |
Keywords | Field | DocType |
outbound traffic monitoring,malware infection detection,system network activity,multi-level system defense | Heuristic,Computer science,Network communication,Computer security,Computer network,Malware,Network activity | Conference |
Volume | ISSN | Citations |
431 | 1865-0929 | 3 |
PageRank | References | Authors |
0.48 | 3 | 1 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Mirosław Skrzewski | 1 | 20 | 4.22 |