Large scale analysis of Peer-to-Peer Botnets

Speaker:

Anna Kolesnichenko

Date:

1 April 2011

Time:

12:30

Room:

Zi-5126

Abstract:

Peer-to-peer Botnets, as exemplified by the Storm Worm and Stuxnet, are a relatively new threat to security on the internet: infected computers automatically search for other computers to be infected, thus spreading the infection rapidly. In a recent paper, such Botnets have been modeled using Stochastic Activity Networks, allowing the use of discrete-event simulation to judge strategies for combating their spread. In the present presentation, we propose a mean-field approximation method for analyzing such models. We show that the mean-field method provides a much faster computation (about 1 second instead of many hours), while still giving results that match the SAN results very well.