« Cisco IOS Flaw and Worm Potential | Main | DDoSVax Worm Traffic Analysis »
Impact of network design on worm propagation
I like this paper, because it explores a simple concept, and one that lies at the heart of the problem. To what degree does a network's topology and structure help or hinder worm propagation.
In this paper, we simulate the Code Red II and Nimda worms on different enterprise-scale networks to determine the impact that topology has on worm propagation. A corporate network can be designed to improve security and, as we show, to decrease the propagation rate of worms that use network scanning as a target discovery technique. We also examine the impact that LaBrea-like devices have on propagation rates and compare it to the impact of network topology.
Source: Impact of network design on worm propagation, by Brian Carrier and Sundararaman Jeyaraman and Sarah Sel.
August 2, 2005 in defense, modeling, papers | Permalink
Tell others: digg submit
|
del.icio.us this
|
Reddit
Comments
I like this paper, but mainly because they chose to extend my network worm simulator. I had no idea they'd done so, by the way. I've only gotten email from one person about their use of my worm simulator, and it wasn't these folks.
I wish they'd given out more details about how they extended it to do subnets, etc, because the devil is in those details for the work they did.
Posted by: Bruce Ediger | Aug 10, 2005 12:04:15 PM
