Conference proceeding
A Network Based Approach to Malware Detection in Large IT Infrastructures
2010 Ninth IEEE International Symposium on Network Computing and Applications, pp 188-191
Jul 2010
Abstract
Malware is code that has malicious intent and is designed for malicious purpose such as stealing confidential data, or obtaining root privileges on a system. The current approach to deal with malware threats such as virus and spyware is to use host based anti-malware software. However, this approach leads to many vulnerable machines since many users don't update their software, their virus signatures, and some even disable their software to avoid the system performance degradation caused by these software. Host based security software require a good deal of administration, with consistent needs for reconfiguration, management, and report analysis. With security administrators supporting an ever growing number of users, such an approach has become impractical. In this paper, we present a novel network based malware detection architecture that uses host security vectors to protect host machines without any intervention from hosts. This architecture provides another layer of security and can complement existing host based solutions. Only central detection server needs to be actively managed instead of individual hosts - hence providing more manageable solution for large IT infrastructures.
Metrics
15 Record Views
1 citations in Scopus
Details
- Title
- A Network Based Approach to Malware Detection in Large IT Infrastructures
- Creators
- B Kumar - Goodwin CollegeC Katsinis - Goodwin College
- Publication Details
- 2010 Ninth IEEE International Symposium on Network Computing and Applications, pp 188-191
- Conference
- 2010 9th IEEE International Symposium on Network Computing and Applications, 9th
- Publisher
- IEEE
- Number of pages
- 1
- Resource Type
- Conference proceeding
- Language
- English
- Academic Unit
- Computer Science
- Scopus ID
- 2-s2.0-78449295688
- Other Identifier
- 991019174629304721