Analyzing cooperative containment of fast scanning worms
作者: Lakshminarayanan Subramanian , Ion Stoica , Jayanthkumar Kannan , Randy H. Katz
DOI:
关键词: Overhead (computing) 、 Vulnerable population 、 Containment (computer programming) 、 The Internet 、 Computer security 、 Software deployment 、 Fast scanning 、 Computer science
摘要: Fast scanning worms, that can infect nearly the entire vulnerable population in order of minutes, are among most serious threats to Internet today. In this work, we investigate efficacy cooperation firewalls containing such worms. We first propose a model for firewall-level and then study containment our using analysis simulation. Our results suggest that, with moderate overhead, provide 95% under 10% deployment while being resilient 100-1000 malicious firewalls.
参考文章(17)
Vincent Berk, George Bakos, Robert Morris, None, Designing a framework for active worm detection on global networks First IEEE International Workshop on Information Assurance, 2003. IWIAS 2003. Proceedings.. pp. 13- 23 ,(2003) , 10.1109/IWIAS.2003.1192455
Nicholas Weaver, Ihab Hamadeh, George Kesidis, Vern Paxson, Preliminary results using scale-down to explore worm dynamics workshop on rapid malcode. pp. 65- 72 ,(2004) , 10.1145/1029618.1029628
Jon Crowcroft, Antony Rowstron, Miguel Castro, Manuel Costa, Can we contain Internet worms Association for Computing Machinery, Inc.. pp. 7- ,(2004)
Brad Karp, Hyang-Ah Kim, Autograph: toward automated, distributed worm signature detection usenix security symposium. pp. 19- 19 ,(2004)
Vern Paxson, Stuart Staniford, Nicholas Weaver, How to Own the Internet in Your Spare Time usenix security symposium. pp. 149- 167 ,(2002)
N. Weaver, D. Ellis, S. Staniford, V. Paxson, Worms vs. perimeters: the case for hard-LANs high performance interconnects. pp. 70- 76 ,(2004) , 10.1109/CONECT.2004.1375206
K.G. Anagnostakis, M.B. Greenwald, S. Ioannidis, A.D. Keromytis, Dekai Li, A cooperative immunization system for an untrusting Internet international conference on networks. pp. 403- 408 ,(2003) , 10.1109/ICON.2003.1266224
Sarma Vangala, Kevin Kwiat, Lixin Gao, Jiang Wu, An Effective Architecture and Algorithm for Detecting Worms with Various Scan Techniques ,(2003)
Vinod Yegneswaran, Paul Barford, Somesh Jha, Global Intrusion Detection in the DOMINO Overlay System. network and distributed system security symposium. ,(2004)
Jaeyeon Jung, V. Paxson, A.W. Berger, H. Balakrishnan, Fast portscan detection using sequential hypothesis testing ieee symposium on security and privacy. pp. 211- 225 ,(2004) , 10.1109/SECPRI.2004.1301325