Detecting Zero-day Polymorphic Worm: A Review

“…They have been extensively studied and found posing the most damaging threats to IoT and its applications. 5 Polymorphic worms can easily evade detection through changing their appearance, such as altering their byte sequence or varying their payload via compression, encryption, among other methods required no human intervention. 6 Replicating themselves to appear differently in each infection makes polymorphic worms survive longer in a network.…”

“…Fast detection and prevention against polymorphic worms have become more imperative. 5,7,8 Researchers have been working hard to develop defensive methods against them, for example, signature-based detection, statistical-based detection, behavior-based detection, and for forth. Generating reliable signatures to detect polymorphic worms is one of such means.…”

“…Polymorphic worms are the height of sophistication in computer malware. They have been extensively studied and found posing the most damaging threats to IoT and its applications 5 . Polymorphic worms can easily evade detection through changing their appearance, such as altering their byte sequence or varying their payload via compression, encryption, among other methods required no human intervention 6 .…”

“…As polymorphic worms posing greater threats to the Internet infrastructures, the need for Internet service providers to secure their assets and protect their customers is growing. Fast detection and prevention against polymorphic worms have become more imperative 5,7,8 …”

Toward machine intelligence that learns to fingerprint polymorphic worms in IoT

“…They have been extensively studied and found posing the most damaging threats to IoT and its applications. 5 Polymorphic worms can easily evade detection through changing their appearance, such as altering their byte sequence or varying their payload via compression, encryption, among other methods required no human intervention. 6 Replicating themselves to appear differently in each infection makes polymorphic worms survive longer in a network.…”

“…Fast detection and prevention against polymorphic worms have become more imperative. 5,7,8 Researchers have been working hard to develop defensive methods against them, for example, signature-based detection, statistical-based detection, behavior-based detection, and for forth. Generating reliable signatures to detect polymorphic worms is one of such means.…”

“…Polymorphic worms are the height of sophistication in computer malware. They have been extensively studied and found posing the most damaging threats to IoT and its applications 5 . Polymorphic worms can easily evade detection through changing their appearance, such as altering their byte sequence or varying their payload via compression, encryption, among other methods required no human intervention 6 .…”

“…As polymorphic worms posing greater threats to the Internet infrastructures, the need for Internet service providers to secure their assets and protect their customers is growing. Fast detection and prevention against polymorphic worms have become more imperative 5,7,8 …”

Toward machine intelligence that learns to fingerprint polymorphic worms in IoT

“…Research indicates that for every breakthrough in security, a new lope hole or zero day is created and this is not attended by the media. Zero-Day have a form of impacting organizations and people in general, after a large time of activity incognito [5]. It is throughout research and investigation that recurs to techniques such as forensics and threat analysis, that societies can anticipate the impact of a zero-day vulnerability, towards a more secure use of technology [6].…”

Editorial of ARIS2 - Advanced Research on Information Systems Security, an International Journal

Cyber Threat Detection and Mitigation Using Artificial Intelligence – A Cyber‐physical Perspective