摘要： P2P蠕虫对P2P网络和Internet构成巨大安全威胁。该文根据P2P网络报文之间的关系，提出一种P2P蠕虫检测方法，通过建立过滤规则实现对P2P蠕虫的检测与抑制。模拟实验结果表明，该方法对P2P蠕虫传播的抑制效果与资源分布存在较大联系，其检测效果 良好。

关键词: P2P蠕虫, 传播, 检测, 抑制

Abstract: P2P worm has become a severe threat to the P2P network and Internet. This paper presents a P2P worm detection method according to the relations between the messages in P2P network, and establishes a series of filter rules to realize the detection and containment for P2P worm. Simulation experimental results show that the distribution of resources has a great influence on the effect of containment for P2P worm propagation in this method and this method has a good effect on P2P worm detection.

Key words: P2P worm, spread, detection, containment

中图分类号: 

• TP393.08