Mitigating Worm Propagation on Virtual LANs

Author

Rajput, Saeed ; Sun, Xiaoguang ; Hsu, Sam

Author_Institution

Comput. Sci. & Inf. Syst., Nova Southeastern Univ., Ft. Lauderdale, FL

fYear

2006

Firstpage

555

Lastpage

556

Abstract

Recent sophisticated worms have spread faster than the patch distribution. We propose an active defense framework that can defend against widespread by reacting quickly to quarantine infections. We propose deploying a number of detectors in the VLAN network. Using Monte Carlo simulations, we have shown that containment of future epidemics is possible and the probability of containment is a function of number of detectors, and that with our assumptions for worm scanning and infection speed characteristics, less than 2% detectors are enough to bring this probability very close to zero

Keywords

Monte Carlo methods; invasive software; local area networks; virtual private networks; Monte Carlo simulations; infection speed characteristics; patch distribution; virtual LAN; worm propagation; worm scanning; Automatic control; Computer science; Computer security; Computer worms; Detection algorithms; Detectors; Information systems; Internet; Operating systems; Sun;

fLanguage

English

Publisher

ieee

Conference_Titel

Local Computer Networks, Proceedings 2006 31st IEEE Conference on

Conference_Location

Tampa, FL

ISSN

0742-1303

Print_ISBN

1-4244-0418-5

Electronic_ISBN

0742-1303

Type

conf

DOI

10.1109/LCN.2006.322166

Filename

4116613

Link To Document

https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1718783