Toward early warning against Internet worms based on critical-sized networks
作者: Emmanouil Magkos , Markos Avlonitis , Panayiotis Kotzanikolaou , Michalis Stefanidakis
DOI: 10.1002/SEC.534
关键词: Logical framework 、 Order (exchange) 、 Stochastic differential equation 、 The Internet 、 Warning system 、 Early warning system 、 Distributed computing 、 Computer science 、 Stochastic modelling 、 Artificial intelligence 、 Random effects model
摘要: In this paper, we build on a recent worm propagation stochastic model, in which random effects during spreading were modeled by means of differential equation. On the basis introduce notion critical size network, is least network that needs to be monitored, order correctly project behavior substantially larger networks. We provide method for theoretical estimation respect with specific characteristics. Our motivation requirement real systems balance accuracy (i.e., monitoring sufficient reduce false alarms) and performance small-scale complexity). addition, run simulation experiments experimentally validate our arguments. Finally, based critical-sized networks, propose logical framework distributed early warning system against unknown fast-spreading worms. proposed framework, parameters an detected are estimated time studying network. way, security enhanced as estimations generated may help large-scale networks respond faster new threats. Copyright © 2012 John Wiley & Sons, Ltd.
sci-hub.se 参考文章(49)
Hermann Haken, Synergetics: Introduction and Advanced Topics ,(2004)
Vern Paxson, Stuart Staniford, Nicholas Weaver, How to Own the Internet in Your Spare Time usenix security symposium. pp. 149- 167 ,(2002)
Stefan Axelsson, Intrusion Detection Systems: A Survey and Taxonomy ,(2002)
Guofei Gu, M. Sharif, Xinzhou Qin, D. Dagon, Wenke Lee, G. Riley, Worm detection, early warning and response based on local victim information annual computer security applications conference. pp. 136- 145 ,(2004) , 10.1109/CSAC.2004.51
Sarma Vangala, Kevin A. Kwiat, Lixin Gao, Jiang Wu, An Effective Architecture and Algorithm for Detecting Worms with Various Scan. network and distributed system security symposium. ,(2004)
Giuseppe Serazzi, Stefano Zanero, Computer Virus Propagation Models Performance Tools and Applications to Networked Systems. pp. 26- 50 ,(2004) , 10.1007/978-3-540-24663-3_2
Boris Rozenberg, Ehud Gudes, Yuval Elovici, A Distributed Framework for the Detection of New Worm-Related Malware european conference on intelligence and security informatics. pp. 179- 190 ,(2008) , 10.1007/978-3-540-89900-6_19
A. Ganesh, L. Massoulie, D. Towsley, The effect of network topology on the spread of epidemics international conference on computer communications. ,vol. 2, pp. 1455- 1466 ,(2005) , 10.1109/INFCOM.2005.1498374
P. Wang, M. C. Gonzalez, C. A. Hidalgo, A.-L. Barabasi, Understanding the spreading patterns of mobile phone viruses. Science. ,vol. 324, pp. 1071- 1076 ,(2009) , 10.1126/SCIENCE.1167053
Cliff Changchun Zou, Weibo Gong, Don Towsley, Code red worm propagation modeling and analysis Proceedings of the 9th ACM conference on Computer and communications security - CCS '02. pp. 138- 147 ,(2002) , 10.1145/586110.586130