High-Fidelity Modeling of Computer Network Worms

Abstract

Abstract modeling, such as using epidemic models, has been the general method of choice for understanding and analyzing the high-level effects of worms. However, high-fidelity models, such as packet-level models, are indispensable for moving beyond aggregate effects, to capture finer nuances and complexities associated with known and future worms in realistic network environments. Here, we first identify the spectrum of available alternatives for worm modeling, and classify them according to their scalability and fidelity. Among them, we focus on three high-fidelity methods for modeling of worms, and study their effectiveness with respect to scalability. Employing these methods, we are then able to, respectively, achieve some of the largest packet-level simulations of worm models to date; implant and attack actual worm monitoring/defense installations inside large simulated networks; and identify a workaround for real-time requirement that fundamentally constrains worm modeling at the highest fidelity levels.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 22, 2004
Accession Number
ADA470528

Entities

People

  • Kalyan S. Perumalla
  • Srikanth Sundaragopalan

Organizations

  • Georgia Tech

Tags

Communities of Interest

  • Energy and Power Technologies

DTIC Thesaurus Topics

  • Abstracts
  • Communication Systems
  • Computer Communications
  • Computer Network Security
  • Computer Networks
  • Computer Simulations
  • Computers
  • Intrusion Detection
  • Network Protocols
  • Network Simulation
  • Network Topology
  • Networks
  • Operating Systems
  • Reliability
  • Routing Protocols
  • Simulations
  • Simulators

Fields of Study

  • Computer science

Readers

  • Computational Modeling and Simulation
  • Distributed Systems and Data Platform Development
  • Infectious Disease/Epidemiology