Abstract
Purchase PDF (1137 K)
E-mail Article
Add to my Quick Links
Cited By in Scopus (0)
Purchase PDF (153 K)
doi:10.1016/j.ijhcs.2006.09.001 
Copyright © 2006 Elsevier Ltd All rights reserved.
Worm damage minimization in enterprise networks
Available online 30 October 2006.
References and further reading may be available for this article. To view references and further reading you must purchase this article.
Abstract
Attackers utilize many forms of intrusion via computer networks; currently, worms are an important vector with the potential for widespread damage. None of the strategies is effective and rapid enough to mitigate worm propagation. Therefore, it is extremely important for organizations to better understand worm behaviour and adopt a strategy to minimize the damage due to worm attacks. This paper describes an approach to minimize the damage due to worm infection in enterprise networks. The approach includes: (1) analyzing the effect of parameters influencing worm infection: openness, homogeneity, and trust, (2) predicting the number of infected nodes by fuzzy decision, and (3) optimizing the trust parameter to minimize the damage by fuzzy control. Experiments using real worm attacks show that the selected parameters are strongly correlated with actual infection rates, the damage prediction produces accurate estimates, and the optimization of the selected parameter can lessen the damage from worm infection.
Keywords: Worm; Worm infection; Fuzzy decision; Fuzzy control; Network security
Article Outline
- 1. Introduction
- 2. Related work
- 3. An approach
- 4. Factor analysis
- 4.1. Openness
- 4.2. Homogeneity
- 4.3. Trust
- 5. Damage prediction
- 5.1. Fuzzification
- 5.2. Inference
- 5.3. Defuzzification
- 6. Parameter tuning
- 7. Experiments
- 8. Concluding remarks
- Acknowledgements
- References
