DocumentCode
188872
Title
Spatially Aware Malware Infection Modeling Framework
Author
Kalliola, Aapo ; Aura, Tuomas
Author_Institution
Comput. Sci. & Eng., Aalto Univ., Aalto, Finland
fYear
2014
fDate
11-13 Sept. 2014
Firstpage
288
Lastpage
292
Abstract
The existing body of research on malware simulation does not make full use of the topological and geographic location of the simulated malware-infected computers on the internet. We address this issue for creating a topologically-aware framework for modeling the spread of malware. Our framework can accommodate a variety of infection models, as well as different host capabilities and on/off patterns. The output of the simulation is a plausible scenario of how an infection could spread over time, at the individual IP-address granularity. The results can be used, for example, to generate semi-realistic malware traffic as input to further simulations and testing. We validate the results by comparing to real-life infection data from a malware network.
Keywords
IP networks; Internet; invasive software; IP-address granularity; Internet; malware infection modelling; topologically-aware framework; Analytical models; Computational modeling; Grippers; IP networks; Internet; Malware; Mathematical model; botnet; malware; simulation;
fLanguage
English
Publisher
ieee
Conference_Titel
Computer and Information Technology (CIT), 2014 IEEE International Conference on
Conference_Location
Xi´an
Type
conf
DOI
10.1109/CIT.2014.113
Filename
6984668
Link To Document