Interplay Between Malware Epidemics and Honeynet Potency in Industrial Control System Network

Fu, Qiang; Yao, Yu; Sheng, Chuan; Yang, Wei

doi:10.1109/access.2020.2989612

Cited by 5 publications

(2 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, the model does not consider the chance of the nodes being infected again after the malware is removed which is possible as we already stated. Models developed for specific scenarios and environments can be also found for mobile wireless sensors networks (WSN) [19], [20], [35], [36]; mobile devices [21], [37]; social networks [22], [38]; IoT networks [23]; industrial control system (ICS) networks [24].…”

Section: Related Workmentioning

confidence: 99%

“…Epidemic models have been extensively used as a mathematical tool that allows to understand malware spread across communication networks. Early examples that used such approach can be found in [15], [16], that were subsequently taken as a reference by different authors [17]- [24]. Modelling allows to identify key features of the infection process and provide insights on the proliferation dynamics, which helps to develop detection and mitigation countermeasures against malware distribution within networks.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Dynamics of Botnet Propagation in Software Defined Networks Using Epidemic Models

et al. 2021

View full text Add to dashboard Cite

During COVID-19 the new normal became an increased reliance on remote connectivity, and that fact is far away to change any time soon. The increasing number of networked devices connected to the Internet is causing an exponential growth of botnets. Subsequently, the number of DDoS (Distributed Denial of Service) attacks registered around the world also increased, especially during the pandemic lockdown. Therefore, it is crucial to understand how botnets are formed and how bots propagate within networks. In particular, analytic modelling of the botnets epidemic process is an essential component for understanding DDoS attacks, and thus mitigate their impact. In this paper, we propose two analytic epidemic models; (i) the first one for enterprise Software Define Networks (SDN) based on the SEIRS (Susceptible -Exposed -Infected -Recovered) approach, while (ii) the second model is designed for service providers' SDN, and it is based on a novel extension of a SEIRS-SEIRS vector-borne approach. Both models illustrate how bots spread in different types of SDN networks. We found that bot infection behaves in a similar way to human epidemics, such as the novel COVID-19 outbreak. We present the calculation of the basic reproduction number R o for both models and we test the system stability using the next generation matrix approach. We have validated the models using the final value theorem (FVT), with which we can determine the steadystate values that provide a better understanding of the propagation process.

show abstract