원문정보
초록
영어
In all kinds of Internet security incidents, the most serious is malicious code. The increasingly serious problem caused by malicious code, not only make the enterprises and users suffered huge economic losses, but also makes network security facing serious threat. In this paper, based on the analysis of malicious code detection technology and detection system, the author designs and implements an unknown malicious code detection system based on network behavior analysis. Test results show that the detection system can distinguish three kinds of ARP attack; it can produce normal alarm information and achieve the desired results. At the same time, the network behavior analysis method needs to be further improved in order to achieve better analysis results, and provide more reliable results for the detection system.
목차
1. Introduction
2. Literature Eeview
2.1. Malicious Code
2.2. Malicious Code Detection
3. Network Behavior Analysis
3.1. Network Infrastructure
3.2. Protocol Analysis
3.3. Main Methods of Network Behavior Analysis
4. System Design and Implementation
4.1. Malicious Code Detection System
4.2. Test Result
5. Conclusions
References