4. Computer Science
  5. Cryptography and Security

Beyond the Blacklist: Modeling Malware Spread and the Effect of Interventions

Computer Science – Cryptography and Security

Scientific paper

Rate now
  [ 0.00 ] – not rated yet Voters 0   Comments 0

Details

13 pages, 11 figures

Scientific paper

Malware spread among websites and between websites and clients is an increasing problem. Search engines play an important role in directing users to websites and are a natural control point for intervening, using mechanisms such as blacklisting. The paper presents a simple Markov model of malware spread through large populations of websites and studies the effect of two interventions that might be deployed by a search provider: blacklisting infected web pages by removing them from search results entirely and a generalization of blacklisting, called depreferencing, in which a website's ranking is decreased by a fixed percentage each time period the site remains infected. We analyze and study the trade-offs between infection exposure and traffic loss due to false positives (the cost to a website that is incorrectly blacklisted) for different interventions. As expected, we find that interventions are most effective when websites are slow to remove infections. Surprisingly, we also find that low infection or recovery rates can increase traffic loss due to false positives. Our analysis also shows that heavy-tailed distributions of website popularity, as documented in many studies, leads to high sample variance of all measured outcomes. These result implies that it will be difficult to determine empirically whether certain website interventions are effective, and it suggests that theoretical models such as the one described in this paper have an important role to play in improving web security.

Edwards Benjamin

Astronomy and Astrophysics – Astrophysics – Instrumentation and Methods for Astrophysics
Scientist

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Forrest Stephanie

Computer Science – Networking and Internet Architecture
Scientist

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Hofmeyr Steven

Computer Science – Networking and Internet Architecture
Scientist

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Moore Tyler

Computer Science – Networking and Internet Architecture
Scientist

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Stelle George

Computer Science – Networking and Internet Architecture
Scientist

  [ 0.00 ] – not rated yet Voters 0   Comments 0

No associations

LandOfFree

Say what you really think

Search LandOfFree.com for scientists and scientific papers. Rate them and share your experience with other people.

Rating

Beyond the Blacklist: Modeling Malware Spread and the Effect of Interventions does not yet have a rating. At this time, there are no reviews or comments for this scientific paper.

If you have personal experience with Beyond the Blacklist: Modeling Malware Spread and the Effect of Interventions, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Beyond the Blacklist: Modeling Malware Spread and the Effect of Interventions will most certainly appreciate the feedback.

Rate now

     

Profile ID: LFWR-SCP-O-36627

  Search
All data on this website is collected from public sources. Our data reflects the most accurate information available at the time of publication.

Canada

 Charities
 Companies
 MP Candidates
 Patents
 Employee Salary Disclosure

World

 Places of the World
 Scientific Papers

United States

 Banks
 Companies
 Counties
 Patents
 Employee Salary Disclosure