Dissertation > Excellent graduate degree dissertation topics show

Network Worm Prevention Mechanism Research Based on P2P Technology

Author: ZhouZuo
Tutor: WuZhongFu
School: Chongqing University
Course: Applied Computer Technology
Keywords: Internet Worm Hierarchical P2P Overlay Distributed Data Aggregation Algorithm Early Warning Immune
CLC: TP393.08
Type: PhD thesis
Year: 2007
Downloads: 1062
Quote: 2
Read: Download Dissertation

Abstract


With the fast development of Internet, issue of network security is becoming increasingly serious with yearly growing security events, booming particularly in recent years. Internet worm has become one of the major threats to Internet for the sake of its severe destructive impact, large invasive scale and rapid pervasive speed. Therefore, it is pressing to hamper Internet worm’s prevalence in large scale network.Most of existing defense systems utilize part features of Internet worm, to identify potential Internet worm attacks by means of monitoring and analyzing a single host’s or local network’s abnormal behavior. However, generally Internet worm often spread through the Internet, with quite rich behavior patterns and propagating media. Therefore it is hard to accurately identify unknown Internet worm’s damage and its incidence merely through analyzing part features, which influence further preventive measures’effect.Currently, researching propagation model and defense technologies of Internet worm within Internet has become consensus of the academic circles. Thus a global emergency response mechanism is necessary to share warning information of Internet worm in time, with purpose to keep the dissemination and destruction within limits. However, in the current Internet environment, convergence and analysis of so large quantities data is almost infeasible relying on traditional network sharing techniques. So we will concern the P2P technologies which are quite successful in the areas of file sharing. It has potential in the field of distributed computing applications, which is the necessary computing environment and mode needed in large-scale Internet worm defense system. By building an Internet worm defense-oriented P2P overlay network, establishing a large-scale Internet worm defense system, it is possible to restrain Internet worm effectively. This thesis conducts an in-depth study on Internet worm defense mechanism based on P2P technology for above reasons.Firstly, summary and analysis of Internet worm’s mechanism and propagation model is given, which play critical role in identifying relevant propagation characteristics and key influencing factors. It serves to pave the way for seeking further methods to combat Internet worm’s invasion, and make it possible to detect defects in the structure of the existing network infrastructure to provide theoretical support for the structure optimization of the Internet with more security and fault-tolerant capabilities. This thesis makes an in-depth analysis of the Internet worm’s peculiar features, which are different from other malicious codes in terms of definition, behavior models, technical means, and scanning strategy. Based on the research of basic epidemic model --Simple Epidemic model, Kermack model, Two-Factor model and SIS (Susceptible-Infectious-Susceptible) mode, Internet worm’s propagation model on P2P networks is explored to provide a theoretical basis for further study on the defense strategies against Internet worm.Secondly, scheme of a hierarchical P2P overlay network for Internet worm defense and corresponding data aggregation algorithm are presented. Against the problems of current P2P overlay networks in application of Internet worm detection, this thesis presents a hierarchical peer-to-peer overlay network for Internet worm prevention, for short HPOWP. Through hierarchical P2P structure, HPOWP improves network scalability of the traditional P2P structure, and adapts to topology of existing network infrastructure effectively, reduces the problems resulting from disparity in logical and physical distance of hierarchical P2P network. Meanwhile, the deployment of various security measures, especially Internet worm defense strategy, is facilitated. We can adopt the appropriate measures according to different network levels, which is suitable for dealing with Internet worm’s propagation in actual Internet environment. On the basis of HPOWP, this thesis further explores the distributed Internet worm early warning information aggregation algorithm in P2P network environment. HPOWP consists of two types of P2P networks: random overlay and structured overlay. Given the topology instability of random overlay, the design of distributed data aggregation algorithm in sub-clustering network is based on Gossip algorithm, which has strong fault tolerance and good scalability. In the high-level DHT structured overlay of HPOWP, a distributed data aggregation algorithm based on DHT, called the DAAD, is present for the collection of early-warning information. DAAD provides an overall view of certain data scattered in the network, which lays the groundwork for the study of Internet worm defense mechanism in large-scale network environment. Simulation results show that the model can effectively solve the rapid aggregation of scattered data issues under complex network environment.Thirdly, the early warning for Internet worm invasion is studied. HPOWP presents a new platform for cooperated Internet worm prevention, and makes early warning of Internet worm in large-scale network environment possible. The self-similarity of Internet worm is discussed as the theoretical foundation. Consequently, fingerprint-based recognition and behavior sequence characteristic are studied for Internet worm recognition technology. By building a honeypot network on HPOWP, this thesis studies early warning mechanism for Internet worm in clustering network and high-level DHT overlay network. The P2P based Internet worm defense system in this thesis makes effective use of the advantage of distributed storage and computation of P2P technology. Simulation results show that proposed solution has some significance in integrating the existing Internet worm early warning systems and realizing the large-scale interactive warning analysis of Internet worm’s invasion..Finally, the immune mechanisms of Internet worm are discussed. Immunising vulnerable network systems is an important solution to prevent sabotage and spread of Internet worm. For suppressing and eliminating Internet worm, it’s key to shorten the interval between issuance of vulnerability and codes of relevant security update. This thesis introduces network system vulnerabilities and security updating related problems, pointing out the necessity and urgency of the network immune system. On this basis, we study three different types of Internet worm immune models, namely server-based Internet worm immune model, P2P-based Internet worm immune model, and friendly worm-based immune model, which provide a wide range of solutions for Internet worm immune mechanism, and discuss various factors related to worm immune mechanism.

Related Dissertations

  1. Study on Protective Effects of Apple Polyphenol on Immune System Injury Caused by γ-Ray,S661.1
  2. Built-In Self Test Research of Digital Circuit,TN79
  3. Research on Early Warning System of Company’s Marketing Risk Based on Simulated Community in the Internet,F274
  4. Cultivation and Effects of Environmental Factors on Carrying WSSV Virus of Litopenaeus Vannamei,S945
  5. The Preliminary Studies on Characteristics of HCV Quasispecies Variation and Its Immune Escaping Mechanism,R392.1
  6. Effects of Different Reconciled Corn Oils on Antioxidative Stress, Lipid Metabolism Enzymes, and Abundance of Immune-related Genes of Broilers,S831.5
  7. Effects of Plant Essential Oil on Growth Performance , Intestinal Microflora and Immunization Performance in Piglets,S828.5
  8. Studies on the Difference of PRRSV Infectious and PRRSV ADE,S858.28
  9. Effects of Nonylphenol and Tributyltin on Immune Factors, Vitellogenin Gene Expression and Gonad Development in Macrobrachium Rosenbergii,S945
  10. The Effect of Vitamin E and Vitamin C on Growth Performance, Non-specific Immune Response for Cobia, Rachycentron Canadum,S963.1
  11. The Characteristics of the Nonspecific Immune Responses of Paa Spinosa under Various Environmental Stresses,Q958.1
  12. A Study on Assessment and Early Warning System of Water Pollution Effect by Land Loadings in Taihu Lake Basin,X52
  13. Design and Development of the Early-Warning System for Soil Pollution Based on .NET and ArcGIS Engine,X833
  14. Development of Inactivated Vaccine Against Streptococcus Equi Zooepidimicus in Whole Cell Binding M-Like Protein Subunit Vaccines,S858.28
  15. Studies on Fermentation of Unconventional Protein Feeds and Their Application in Broiler Diets,S831.5
  16. The Study on the Effect of the Transport Stress and Anti-stress Treatment on the Physiological Function of Beef Cattle,S858.23
  17. Improving of Artificial Imune Classification and Anomaly Detection Algorithms,R392.1
  18. The Influence in Different Route of Medication with Vitamin A on CD4~+CD25~+ Regulatory T Cell and Cell Factor of IL-4、 IFN-γ in a Rat Persistent Asthma Model,R562.25
  19. Effects and Some Mechanisms of TACI-Ig on Immune Function in MRL/lpr Mice,R593.241
  20. DNA Prime/Protein Boost of Japanse Edcephalitis Virus NS1 Protein to Improve Immune Response in Mice,R392
  21. Serological Supervision and Prevention of Porcine Reproductive and Respiratory Syndrome in Large-scale Swine Farm,S858.28

CLC: > Industrial Technology > Automation technology,computer technology > Computing technology,computer technology > Computer applications > Computer network > General issues > Computer Network Security
© 2012 www.DissertationTopic.Net  Mobile