Mobile Contagion: Simulation of Infection and Defense

Authors:
Everett Anderson;Kevin Eustice;Shane Markstrum;Mark Hansen;Peter Reiher
Affiliations:
University of California at Los Angeles;University of California at Los Angeles;University of California at Los Angeles;University of California at Los Angeles;University of California at Los Angeles
Venue:
Proceedings of the 19th Workshop on Principles of Advanced and Distributed Simulation
Year:
2005

Citing 10
Cited 4

Analysis of a metropolitan-area wireless network

MobiCom '99 Proceedings of the 5th annual ACM/IEEE international conference on Mobile computing and networking
Analysis of a local-area wireless network

MobiCom '00 Proceedings of the 6th annual international conference on Mobile computing and networking
Characterizing user behavior and network performance in a public wireless LAN

SIGMETRICS '02 Proceedings of the 2002 ACM SIGMETRICS international conference on Measurement and modeling of computer systems
Analysis of a campus-wide wireless network

Proceedings of the 8th annual international conference on Mobile computing and networking
How to Own the Internet in Your Spare Time

Proceedings of the 11th USENIX Security Symposium
Inside the Slammer Worm

IEEE Security and Privacy
Experiences with worm propagation simulations

Proceedings of the 2003 ACM workshop on Rapid malcode
Worm propagation modeling and analysis under dynamic quarantine defense

Proceedings of the 2003 ACM workshop on Rapid malcode
Securing nomads: the case for quarantine, examination, and decontamination

Proceedings of the 2003 workshop on New security paradigms
Characterizing mobility and network usage in a corporate wireless local-area network

Proceedings of the 1st international conference on Mobile systems, applications and services

Bluetooth worm propagation: mobility pattern matters!

ASIACCS '07 Proceedings of the 2nd ACM symposium on Information, computer and communications security
On the detection and origin identification of mobile worms

Proceedings of the 2007 ACM workshop on Recurring malcode
Proximity breeds danger: emerging threats in metro-area wireless networks

SS'07 Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium
Select&Spray: towards deployable opportunistic communication in large scale networks

Proceedings of the 11th ACM international symposium on Mobility management and wireless access

Quantified Score

Hi-index	0.00

Visualization

Abstract

For worms with known signatures, properly configured firewalls can prevent infection of a network from the outside. However, as several recent worms have shown, portable computers provide worms with an entry point into such networks, since these computers are connected behind the firewall. Once inside, the firewall provides no protection against the worm's further spread. Wireless networks are particularly dangerous in this regard, as the act of connection is often invisible, and improperly configured wireless networks will allow anyone within radio range to connect. In this paper, we use real data on a large-scale wireless deployment to analyze the speed with which a worm could spread if it used only this propagation vector. We discuss several possible solutions and provide analysis on how much protection those solutions would provide.