A hybrid quarantine defense
- 29 October 2004
- conference paper
- conference paper
- Published by Association for Computing Machinery (ACM)
Abstract
We study the strengths, weaknesses, and potential synergies of two complementary worm quarantine defense strategies under various worm attack profiles. We observe their abilities to delay or suppress infection growth rates under two propagation techniques and three scan rates, and explore the potential synergies in combining these two complementary quarantine strategies. We compare the performance of the individual strategies against a hybrid combination strategy, and conclude that the hybrid strategy yields substantial performance improvements, beyond what either technique provides independently. This result offers potential new directions in hybrid quarantine defenses.Keywords
This publication has 5 references indexed in Scilit:
- Cyber defense technology networking and evaluationCommunications of the ACM, 2004
- Epidemic profiles and defense of scale-free networksPublished by Association for Computing Machinery (ACM) ,2003
- A taxonomy of computer wormsPublished by Association for Computing Machinery (ACM) ,2003
- PredatorsPublished by Association for Computing Machinery (ACM) ,2002
- Code-RedPublished by Association for Computing Machinery (ACM) ,2002