Dynamical analysis and control strategies on malware propagation model

Feng, Liping; Liao, Xiaofeng; Han, Qi; Li, Huaqing

doi:10.1016/j.apm.2013.03.051

Cited by 48 publications

(33 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Due to the existence of time delay, vaccinated hosts go through a temporary state (delayed state) after the failure of vaccination before becoming susceptible. In this paper, we try to establish a realistic worm propagation model, motivated by the works [7,27]. This model can give deep insight into predicting worm spread in networks.…”

Section: Introductionmentioning

confidence: 99%

“…Gan et al [25] show that some nonlinear incidence rates may be conducive to the containment of computer viruses. Feng et al [27] have proposed the SIRS model with a variable infection rate which plays an important role in the spread of the Internet worm. We consider that the vaccinated hosts (the immunizing hosts) may turn to susceptible hosts (the hosts liable to infection by worms) if the worm variants appear or the patches lose efficacy, and this process may take a period of time.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

An Epidemic Model of Computer Worms with Time Delay and Variable Infection Rate

Yao

Yang

et al. 2018

Security and Communication Networks

View full text Add to dashboard Cite

With rapid development of Internet, network security issues become increasingly serious. Temporary patches have been put on the infectious hosts, which may lose efficacy on occasions. This leads to a time delay when vaccinated hosts change to susceptible hosts. On the other hand, the worm infection is usually a nonlinear process. Considering the actual situation, a variable infection rate is introduced to describe the spread process of worms. According to above aspects, we propose a time-delayed worm propagation model with variable infection rate. Then the existence condition and the stability of the positive equilibrium are derived. Due to the existence of time delay, the worm propagation system may be unstable and out of control. Moreover, the threshold 0 of Hopf bifurcation is obtained. The worm propagation system is stable if time delay is less than 0 . When time delay is over 0 , the system will be unstable. In addition, numerical experiments have been performed, which can match the conclusions we deduce. The numerical experiments also show that there exists a threshold in the parameter , which implies that we should choose appropriate infection rate ( ) to constrain worm prevalence. Finally, simulation experiments are carried out to prove the validity of our conclusions.

show abstract

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

An Epidemic Model of Computer Worms with Time Delay and Variable Infection Rate

Yao

Yang

et al. 2018

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Unlike the traditional signature-based malicious code detection method, this allows for the detection of a malicious code that is newly emerging and that takes a detour around the detection method. However, there is the possibility of a false-positive where normal files are mistaken for being malicious codes [17].…”

Section: Technologies For the Analysis And Detection Of Malicious Behmentioning

confidence: 99%

HB-DIPM: Human Behavior Analysis-Based Malware Detection and Intrusion Prevention Model in the Future Internet

2016

J Inf Process Syst

View full text Add to dashboard Cite

As interest in the Internet increases, related technologies are also quickly progressing. As smart devices become more widely used, interest is growing in words are missing here like "improving the" or "figuring out how to use the" future Internet to resolve the fundamental issues of transmission quality and security. The future Internet is being studied to improve the limits of existing Internet structures and to reflect new requirements. In particular, research on words are missing here like "finding new forms of" or "applying new forms of" or "studying various types of" or "finding ways to provide more" reliable communication to connect the Internet to various services is in demand. In this paper, we analyze the security threats caused by malicious activities in the future Internet and propose a human behavior analysis-based security service model for malware detection and intrusion prevention to provide more reliable communication. Our proposed service model provides high reliability services by responding to security threats by detecting various malware intrusions and protocol authentications based on human behavior.

show abstract

“…In addition, Figure 2 represents the scenario for detecting APT attack as to 1, 3, 4, 5, 6 among the steps of APT attack mentioned in Section 2.2. Step 1 (Detection Scenario of Step 1,3,4,5,6). See Figure 2.…”

Section: Service Scenariomentioning

confidence: 99%

“…An APT attack is one of the major cyber-attacks in addition to targeted attack. It is a module to use all the things known about the attack [3]. The some of the prominent cases for APT attack include Stuxnet, Duqu, Red October, Mask, etc., and each of these attacks had a different target and purpose.…”

Section: Introductionmentioning

confidence: 99%

MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats

Moon

Lee

et al. 2014

Symmetry

View full text Add to dashboard Cite

Abstract:Here we report on the issue of Advanced Persistent Threats (APT), which use malware for the purpose of leaking the data of large corporations and government agencies. APT attacks target systems continuously by utilizing intelligent and complex technologies. To overthrow the elaborate security network of target systems, it conducts an attack after undergoing a pre-reconnaissance phase. An APT attack causes financial loss, information leakage, etc. They can easily bypass the antivirus system of a target system. In this paper, we propose a Multi-Layer Defense System (MLDS) that can defend against APT. This system applies a reinforced defense system by collecting and analyzing log information and various information from devices, by installing the agent on the network appliance, server and end-user. It also discusses how to detect an APT attack when one cannot block the initial intrusion while continuing to conduct other activities. Thus, this system is able to minimize the possibility of initial intrusion and damages of the system by promptly responding through rapid detection of an attack when the target system is attacked.

show abstract

Dynamical analysis and control strategies on malware propagation model

Cited by 48 publications

References 22 publications

An Epidemic Model of Computer Worms with Time Delay and Variable Infection Rate

An Epidemic Model of Computer Worms with Time Delay and Variable Infection Rate

HB-DIPM: Human Behavior Analysis-Based Malware Detection and Intrusion Prevention Model in the Future Internet

MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats

Contact Info

Product

Resources

About