A worm misuse pattern

Eduardo B. Fernandez; Nobukazu Yoshioka; Hironori Washizaki

doi:10.1145/2371736.2371739

A worm misuse pattern

Eduardo B. Fernandez^*, Nobukazu Yoshioka, Hironori Washizaki

^*Corresponding author for this work

School of Fundamental Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

2 Citations (Scopus)

Abstract

We have proposed a new type of pattern, the misuse pattern. This pattern describes, from the point of view of the attacker, how a type of attack or misuse is performed (what system units it uses and how); it also provides ways of stopping the attack by enumerating possible security patterns that can be applied for this purpose, and helps analyzing the attack once it has happened by indicating where can we find forensics data as well as what type of data. A catalog of misuse patterns is needed to let designers evaluate their designs with respect to possible threats. We present here a misuse pattern for a generic worm, which describes the essential and typical characteristics of this type of malware. We consider how to stop this malware and we also discuss some examples and variations.

Original language	English
Title of host publication	AsianPLoP 2010 - 1st Asian Conference on Pattern Languages of Programs, Proceedings
DOIs	https://doi.org/10.1145/2371736.2371739
Publication status	Published - 2010
Event	1st Asian Conference on Pattern Languages of Programs, AsianPLoP 2010 - Tokyo, Japan Duration: 2010 Mar 16 → 2010 Mar 17

Publication series

Name	ACM International Conference Proceeding Series

Conference

Conference	1st Asian Conference on Pattern Languages of Programs, AsianPLoP 2010
Country/Territory	Japan
City	Tokyo
Period	10/3/16 → 10/3/17

Keywords

Computer security
Misuse patterns
Viruses and worms

ASJC Scopus subject areas

Software
Human-Computer Interaction
Computer Vision and Pattern Recognition
Computer Networks and Communications

Access to Document

10.1145/2371736.2371739

Cite this

@inproceedings{8c1d40af316c44df91f39a1b5a9f0395,

title = "A worm misuse pattern",

abstract = "We have proposed a new type of pattern, the misuse pattern. This pattern describes, from the point of view of the attacker, how a type of attack or misuse is performed (what system units it uses and how); it also provides ways of stopping the attack by enumerating possible security patterns that can be applied for this purpose, and helps analyzing the attack once it has happened by indicating where can we find forensics data as well as what type of data. A catalog of misuse patterns is needed to let designers evaluate their designs with respect to possible threats. We present here a misuse pattern for a generic worm, which describes the essential and typical characteristics of this type of malware. We consider how to stop this malware and we also discuss some examples and variations.",

keywords = "Computer security, Misuse patterns, Viruses and worms",

author = "Fernandez, {Eduardo B.} and Nobukazu Yoshioka and Hironori Washizaki",

year = "2010",

doi = "10.1145/2371736.2371739",

language = "English",

isbn = "9781450301268",

series = "ACM International Conference Proceeding Series",

booktitle = "AsianPLoP 2010 - 1st Asian Conference on Pattern Languages of Programs, Proceedings",

note = "1st Asian Conference on Pattern Languages of Programs, AsianPLoP 2010 ; Conference date: 16-03-2010 Through 17-03-2010",

}

TY - GEN

T1 - A worm misuse pattern

AU - Fernandez, Eduardo B.

AU - Yoshioka, Nobukazu

AU - Washizaki, Hironori

PY - 2010

Y1 - 2010

N2 - We have proposed a new type of pattern, the misuse pattern. This pattern describes, from the point of view of the attacker, how a type of attack or misuse is performed (what system units it uses and how); it also provides ways of stopping the attack by enumerating possible security patterns that can be applied for this purpose, and helps analyzing the attack once it has happened by indicating where can we find forensics data as well as what type of data. A catalog of misuse patterns is needed to let designers evaluate their designs with respect to possible threats. We present here a misuse pattern for a generic worm, which describes the essential and typical characteristics of this type of malware. We consider how to stop this malware and we also discuss some examples and variations.

AB - We have proposed a new type of pattern, the misuse pattern. This pattern describes, from the point of view of the attacker, how a type of attack or misuse is performed (what system units it uses and how); it also provides ways of stopping the attack by enumerating possible security patterns that can be applied for this purpose, and helps analyzing the attack once it has happened by indicating where can we find forensics data as well as what type of data. A catalog of misuse patterns is needed to let designers evaluate their designs with respect to possible threats. We present here a misuse pattern for a generic worm, which describes the essential and typical characteristics of this type of malware. We consider how to stop this malware and we also discuss some examples and variations.

KW - Computer security

KW - Misuse patterns

KW - Viruses and worms

UR - http://www.scopus.com/inward/record.url?scp=84867699275&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84867699275&partnerID=8YFLogxK

U2 - 10.1145/2371736.2371739

DO - 10.1145/2371736.2371739

M3 - Conference contribution

AN - SCOPUS:84867699275

SN - 9781450301268

T3 - ACM International Conference Proceeding Series

BT - AsianPLoP 2010 - 1st Asian Conference on Pattern Languages of Programs, Proceedings

T2 - 1st Asian Conference on Pattern Languages of Programs, AsianPLoP 2010

Y2 - 16 March 2010 through 17 March 2010

ER -

A worm misuse pattern

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this