An assessment of overt malicious activity manifest in residential networks
DIMVA'11 Proceedings of the 8th international conference on Detection of intrusions and malware, and vulnerability assessment
| Hi-index | 0.00 |
Epidemiology, the science that studies the cause and propagation of diseases, provides us with the concepts and methods to analyze the potential risk factors to which ADSL customers' PCs are exposed, with respect to their usage of network applications. This paper details the analysis of the traffic of a large set of real ADSL customers in the corenet work. We build a profile of network usage for each customer and we detect malicious ones. Based on these data we study the impact of some characteristics in ADSL customer profiles on their likeliness to generate malicious traffic. We find two application types that are risk factors and we also bring evidence that the type of Operating System impacts greatly the odds of being infected. Based on these results we build a profile of customers more likely to be infected.