Title :
Simulating Threats Propagation within the NSP Infrastructure
Author :
Puzis, Rami ; Tubi, Meytal ; Tahan, Gil ; Elovici, Yuval
Author_Institution :
Ben-Gurion Univ., Beersheba
Abstract :
Threats such as computer worms, Spyware and Trojans account for more than 10% of the total traffic of a network service providers (NSP). The NSP traffic can be monitored and cleaned by distributed network intrusion detection system (DNIDS) that may be deployed on the NSP routers/links. In this study we choose which routers/links to protect based on group betweenness centrality index that is used as a measure of their collaborative influence on the communication in the NSP infrastructure. During the current study we developed a framework aimed at slowing down or even preventing the propagation of known threats. In the first part of the framework the influential group of routers/links has to be located. In the second part we analyze parallel propagation of multiple types of threats in the NSP infrastructure using the susceptible infective removed model of epidemic propagation.
Keywords :
computer networks; computer viruses; digital simulation; groupware; security of data; telecommunication network routing; telecommunication network topology; telecommunication security; telecommunication traffic; NSP links; NSP network topology; NSP routers; NSP traffic; distributed network intrusion detection system; epidemic propagation; group betweenness centrality index; network service providers; susceptible infective removed model; threats propagation simulation; Computational modeling; Computer simulation; Computer viruses; Computer worms; Gas insulated transmission lines; Intrusion detection; Monitoring; Protection; Telecommunication traffic; Traffic control;
Conference_Titel :
Intelligence and Security Informatics, 2007 IEEE
Conference_Location :
New Brunswick, NJ
Electronic_ISBN :
1-4244-1329-X
DOI :
10.1109/ISI.2007.379526
