• DocumentCode
    1903035
  • Title

    Optimising malware

  • Author

    Fernandez, José M. ; Bureau, Pierre-Marc

  • Author_Institution
    Ecole Polytech. de Montreal, Que.
  • fYear
    2006
  • fDate
    10-12 April 2006
  • Lastpage
    586
  • Abstract
    In recent years, malicious software (malware) has become one of the most insidious threats in computer security. However, this is arguably not the result of increased sophistication in malware design or attack strategies, but rather of the increased presence of computers and computer networks within every aspect of society. In this paper, we address and defend the commonly shared point of view that the worst is very much yet to come. We introduce an aim-oriented performance theory for malware and malware attacks, within which we identify some of the performance criteria for measuring their "goodness" with respect to some of the typical objectives for which they are currently used. We also use the OODA loop model, a well-known paradigm of command and control borrowed from military doctrine, as a tool for organising and reasoning about the behavioural characteristics of malware and orchestrated attacks using it. We then identify and discuss particular areas of malware design and deployment strategy in which very little development has been seen in the past, and that are likely sources of increased future malware threats. Finally, we discuss how standard optimisation techniques could be applied to malware design, in order to allow even moderately equipped malicious attackers to quickly converge towards optimal malware attack strategies and tools fine-tuned for the current Internet
  • Keywords
    Internet; invasive software; optimisation; performance evaluation; telecommunication security; Internet; OODA loop model; aim-oriented performance theory; computer networks; computer security; malicious software; optimal malware attack strategies; Computer networks; Computer security; Computer worms; Current measurement; Design optimization; Information security; Internet; Protection; Software performance; Software tools;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Performance, Computing, and Communications Conference, 2006. IPCCC 2006. 25th IEEE International
  • Conference_Location
    Phoenix, AZ
  • Print_ISBN
    1-4244-0198-4
  • Type

    conf

  • DOI
    10.1109/.2006.1629455
  • Filename
    1629455