Title :
Email Worm Mitigation by Controlling the Name Server Response Rate
Author :
Chatzis, Nikolaos ; Pujol, Enric
Author_Institution :
Fraunhofer FOKUS, Berlin
Abstract :
Email worms and the spam associated with them are one of the main operational security issues today because they waste time, money and resources. The high incidence of email worms today clearly indicates that current network defence mechanisms yield rather meagre results in mitigating this class of self-propagating malicious program. In this work, we build on the observation that email worms rely on the local name servers to propagate, and propose a novel approach to slow down their propagation by means of limiting the response rate of local name servers, which are topologically near the infected user machines. We conduct extensive simulation experiments that involve email network, email user behaviour, email propagation, and physical network modelling, and show that our approach is promising for slowing down email worm epidemics.
Keywords :
file servers; invasive software; unsolicited e-mail; email network; email propagation; email spam; email user behaviour; email worm epidemics; email worm mitigation; local name server; malicious program; name server response rate; network defence; physical network modelling; Control systems; Electronic mail; Humans; Information filtering; Information filters; Information security; Internet; Network servers; Telecommunication traffic; Web server; DNS; email worms; rate limiting;
Conference_Titel :
Emerging Security Information, Systems and Technologies, 2008. SECURWARE '08. Second International Conference on
Conference_Location :
Cap Esterel
Print_ISBN :
978-0-7695-3329-2
Electronic_ISBN :
978-0-7695-3329-2
DOI :
10.1109/SECURWARE.2008.46
