Title :
Applying Formal Evaluation to Worm Defense Design
Author :
Sharykin, Raman ; Porras, Phillip A.
Author_Institution :
Dept. of Comput. Sci., Urbana-Champaign Illinois Univ., Urbana, IL
Abstract :
We discuss the early insertion of formal analyses in distributed malware defense evaluation, and provide an example method for applying an executable rewriting logic specification to drive both simulation and property validation of a collaborative group-based worm defense. An important aspect of the algorithm under consideration is its distributed and probabilistic nature, which makes the defense system harder to attack but unfortunately also complicates the ability of designers to fully understand its behavioral properties. We demonstrate one approach to formally analyze our case study worm defense algorithm, employing tools that facilitate both statistical simulation and property validation. Our approach is posed as complementary to the current practice of informal design specification and evaluation through network simulation.
Keywords :
formal specification; invasive software; statistical analysis; collaborative group-based worm defense system; distributed malware defense evaluation; executable rewriting logic specification; formal evaluation; Algorithm design and analysis; Analytical models; Asynchronous communication; Computer science; Computer worms; Laboratories; Logic design; Mathematical model; Stochastic systems; Switches;
Conference_Titel :
Performance, Computing, and Communications Conference, 2007. IPCCC 2007. IEEE Internationa
Conference_Location :
New Orleans, LA
Print_ISBN :
1-4244-1138-6
Electronic_ISBN :
1097-2641
DOI :
10.1109/PCCC.2007.358930