Using Approximate Bayesian Computation to Empirically Test Email Malware Propagation Models Relevant to Common Intervention Actions
Autor: | Michel Cukier, Edward Condon |
---|---|
Rok vydání: | 2016 |
Předmět: |
0301 basic medicine
Computer science computer.software_genre Network topology 01 natural sciences Field (computer science) Electronic mail Data modeling 010104 statistics & probability 03 medical and health sciences 030104 developmental biology Transmission (telecommunications) Malware Data mining 0101 mathematics Approximate Bayesian computation computer Vulnerability (computing) |
Zdroj: | ISSRE |
DOI: | 10.1109/issre.2016.24 |
Popis: | There are different ways for malware to spread from device to device. Some methods depend on the presence of a vulnerability that can be exploited along with some action taken by a user of the device. Malware propagating through email are one such example. While existing research has explored potential factors and models for simulating this form of propagation, it remains for these potential factors and models to be empirically tested and supported using field collected incident data. We review a common model for simulating the spread of email malware and use simulations to illustrate the potential impacts of connection topologies and different distributions of associated user actions. We use simulations to examine the potential impact of two types of commonly available interventions–patching vulnerable devices and blocking the transmission of infected messages in combination with different connection topologies and different distributions of user actions. Finally, we explore the use of Approximate Bayesian Computation (ABC) as a method to compare simulation results to empirical data to assess different model features, and to infer corresponding model parameter values from field collected email malware incident data. |
Databáze: | OpenAIRE |
Externí odkaz: |