Title :
The design and evaluation of a defense system for Internet worms
Author :
Scandariato, Riccardo ; Knight, John C.
Author_Institution :
Politecnico di Torino, Italy
Abstract :
Many areas of society have become heavily dependent on services such as transportation facilities, utilities and so on that are implemented in part by large numbers of computers and communications links. Both past incidents and research studies show that a well-engineered Internet worm can disable such systems in a fairly simple way and, most notably, in a matter of a few minutes. This indicates the need for defenses against worms but their speed rules out the possibility of manually countering worm outbreaks. We present a platform that emulates the epidemic behavior of Internet active worms in very large networks. A reactive control system operates on top of the platform and provides a monitor/analyze/respond approach to deal with infections automatically. Details of our highly configurable platform and various experimental performance results are presented.
Keywords :
Internet; invasive software; Internet worms; defense system; highly configurable platform; monitor-analyze-respond approach; reactive control system; very large networks; Automatic control; Computer worms; Computerized monitoring; Control systems; Counting circuits; IP networks; Information systems; Internet; Sensor systems; Transportation;
Conference_Titel :
Reliable Distributed Systems, 2004. Proceedings of the 23rd IEEE International Symposium on
Print_ISBN :
0-7695-2239-4
DOI :
10.1109/RELDIS.2004.1353017
