Title

Modeling And Analysis On The Propagation Dynamics Of Modern Email Malware

Keywords

email malware; Network security; propagation modeling

Abstract

Due to the critical security threats imposed by email-based malware in recent years, modeling the propagation dynamics of email malware becomes a fundamental technique for predicting its potential damages and developing effective countermeasures. Compared to earlier versions of email malware, modern email malware exhibits two new features, reinfection and self-start. Reinfection refers to the malware behavior that modern email malware sends out malware copies whenever any healthy or infected recipients open the malicious attachment. Self-start refers to the behavior that malware starts to spread whenever compromised computers restart or certain files are visited. In the literature, several models are proposed for email malware propagation, but they did not take into account the above two features and cannot accurately model the propagation dynamics of modern email malware. To address this problem, we derive a novel difference equation based analytical model by introducing a new concept of virtual infected user. The proposed model can precisely present the repetitious spreading process caused by reinfection and self-start and effectively overcome the associated computational challenges. We perform comprehensive empirical and theoretical study to validate the proposed analytical model. The results show our model greatly outperforms previous models in terms of estimation accuracy. © 2013 IEEE.

Publication Date

1-1-2014

Publication Title

IEEE Transactions on Dependable and Secure Computing

Volume

11

Issue

4

Number of Pages

361-374

Document Type

Article

Personal Identifier

scopus

DOI Link

https://doi.org/10.1109/TDSC.2013.49

Socpus ID

84904668804 (Scopus)

Source API URL

https://api.elsevier.com/content/abstract/scopus_id/84904668804

This document is currently not available here.

Share

COinS