{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,5]],"date-time":"2024-09-05T18:01:43Z","timestamp":1725559303807},"publisher-location":"Berlin, Heidelberg","reference-count":24,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540266136"},{"type":"electronic","value":"9783540316459"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2005]]},"DOI":"10.1007\/11506881_7","type":"book-chapter","created":{"date-parts":[[2010,7,14]],"date-time":"2010-07-14T20:30:33Z","timestamp":1279139433000},"page":"103-122","source":"Crossref","is-referenced-by-count":8,"title":["Flow-Level Traffic Analysis of the Blaster and Sobig Worm Outbreaks in an Internet Backbone"],"prefix":"10.1007","author":[{"given":"Thomas","family":"D\u00fcbendorfer","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Arno","family":"Wagner","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Theus","family":"Hossmann","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Bernhard","family":"Plattner","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"7_CR1","unstructured":"CERT: Security Advisory: MS.Blaster (CA-2003-20) (2003), http:\/\/www.cert.org\/advisories\/CA-2003-20.html"},{"key":"7_CR2","unstructured":"CERT: Incident Report: Sobig.F (IN-2003-03) (2003), http:\/\/www.cert.org\/incident_notes\/IN-2003-03.html"},{"key":"7_CR3","unstructured":"Wagner, A., D\u00fcbendorfer, T., Plattner, B.: The DDoSVax project at ETH Z\u00fcrich (2004), http:\/\/www.tik.ee.ethz.ch\/~ddosvax\/"},{"key":"7_CR4","unstructured":"ETH: Swiss Federal Institute of Technology (2004), http:\/\/www.ethz.ch\/"},{"key":"7_CR5","unstructured":"M\u00fcller, O., Graf, D., Oppermann, A., Weibel, H.: Swiss Internet Analysis (2003), http:\/\/www.swiss-internet-analysis.org\/"},{"key":"7_CR6","unstructured":"Cisco: White Paper: NetFlow Services and Applications (2002), http:\/\/www.cisco.com\/warp\/public\/cc\/pd\/iosw\/ioft\/neflct\/tech\/napps_wp.htm"},{"key":"7_CR7","doi-asserted-by":"publisher","first-page":"422","DOI":"10.1145\/362686.362692","volume":"13","author":"B.H. Bloom","year":"1970","unstructured":"Bloom, B.H.: Space\/time trade-offs in hash coding with allowable errors. Commun. ACM\u00a013, 422\u2013426 (1970)","journal-title":"Commun. ACM"},{"key":"7_CR8","unstructured":"Symantec Corporation: Symantec Security Response - W32.Blaster. Worm (2003), http:\/\/securityresponse.symantec.com\/avcenter\/venc\/data\/w32.blaster.worm.html"},{"key":"7_CR9","unstructured":"TREND micro: Technical details of WORM MSBLAST.A (2003), http:\/\/www.trendmicro.com\/vinfo\/virusencyclo\/default5.asp?VName=WORM_MSBLAST.A&VSect=T"},{"key":"7_CR10","unstructured":"Nazario, J.: The Blaster Worm: The View From 10\u2019000 Feet (2003), http:\/\/www.nanog.org\/mtg-0310\/pdf\/nazario.pdf"},{"key":"7_CR11","unstructured":"SWITCH: FloMA: Pointers and Software (Netflow tools) (2004), http:\/\/www.switch.ch\/tf-tant\/floma\/software.html"},{"key":"7_CR12","unstructured":"CERT\/CC at SEI\/CMU: SiLK GPL Netflow tools (2002), http:\/\/silktools.sourceforge.net\/"},{"key":"7_CR13","unstructured":"CAIDA: Cooperative Association for Internet Data Analysis (2004), http:\/\/www.caida.org\/"},{"issue":"4","key":"7_CR14","doi-asserted-by":"crossref","first-page":"46","DOI":"10.1109\/MSP.2004.59","volume":"2","author":"C. Shannon","year":"2004","unstructured":"Shannon, C., Moore, D.: The Spread of the Witty Worm (2004), http:\/\/www.caida.org\/analysis\/security\/witty\/","journal-title":"IEEE Security & Privacy"},{"key":"7_CR15","unstructured":"Kim, J., Radhakrishnan, S., Dhall, S.K.: Measurement and Analysis of Worm Propagation on Internet Network Topology. In: Proceedings of ICCN (2004)"},{"key":"7_CR16","unstructured":"Staniford, S., Paxson, V., Weaver, N.: How to 0wn the Internet in Your Spare Time. In: Proc. USENIX Security Symposium (2002)"},{"key":"7_CR17","doi-asserted-by":"crossref","unstructured":"Wagner, A., D\u00fcbendorfer, T., Plattner, B.: Experiences with worm propagation simulations. In: ACM Workshop on Rapid Malcode, WORM (2003)","DOI":"10.1145\/948187.948194"},{"key":"7_CR18","doi-asserted-by":"crossref","unstructured":"Zou, C.C., Gong, W., Towsley, D.: Code Red Worm Propagation Modeling and Analysis. In: Proceedings of the 9th ACM conference on Computer and communications security, Washington, DC, USA (2002)","DOI":"10.1145\/586110.586130"},{"key":"7_CR19","unstructured":"Lemos, R.: MSBlast epidemic far larger than believed (2004), http:\/\/news.com.com\/MSBlast+epidemic+far+larger+than+believed\/2100-7349_3-5184439.html"},{"key":"7_CR20","unstructured":"The Last Stage Of Delirium: Buffer Overrun in Windows RPC Interface (2004), http:\/\/lsd-pl.net\/special.html"},{"key":"7_CR21","unstructured":"Microsoft Corporation: Microsoft Security Bulletin MS03-026 (2003), http:\/\/www.microsoft.com\/technet\/security\/bulletin\/MS03-026.mspx"},{"key":"7_CR22","unstructured":"eEye Digital\u00a0Security: Blaster Worm Analysis (2003), http:\/\/www.eeye.com\/html\/Research\/Advisories\/AL20030811.html"},{"key":"7_CR23","volume-title":"Proceedings of 14th IEEE International Workshops on Enabling Technologies: Infrastructures for Collaborative Enterprises (WET ICE); STCA security workshop","author":"T. D\u00fcbendorfer","year":"2005","unstructured":"D\u00fcbendorfer, T., Plattner, B.: Host Behaviour Based Early Detection of Worm Outbreaks in Internet Backbones. In: Proceedings of 14th IEEE International Workshops on Enabling Technologies: Infrastructures for Collaborative Enterprises (WET ICE); STCA security workshop. IEEE, Los Alamitos (2005)"},{"key":"7_CR24","volume-title":"Proceedings of 14th IEEE International Workshops on Enabling Technologies: Infrastructures for Collaborative Enterprises (WET ICE); STCA security workshop","author":"A. Wagner","year":"2005","unstructured":"Wagner, A., Plattner, B.: Entropy Based Worm and Anomaly Detection in Fast IP Networks. In: Proceedings of 14th IEEE International Workshops on Enabling Technologies: Infrastructures for Collaborative Enterprises (WET ICE); STCA security workshop. IEEE, Los Alamitos (2005)"}],"container-title":["Lecture Notes in Computer Science","Detection of Intrusions and Malware, and Vulnerability Assessment"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/11506881_7.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,11,17]],"date-time":"2020-11-17T20:03:37Z","timestamp":1605643417000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/11506881_7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2005]]},"ISBN":["9783540266136","9783540316459"],"references-count":24,"URL":"https:\/\/doi.org\/10.1007\/11506881_7","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2005]]}}}