An Empirical Analysis of Rate Limiting Mechanisms to Contain Internet Worms

Channel:
Microsoft Research
Subscribers:
344,000
Published on ● Video Link: https://www.youtube.com/watch?v=m2Ey0A8cwoA


Duration: 1:11:17
23 views
0

One class of worm defense techniques that received atten­ tion of late is to ``rate limit'' outbound traffic to contain fast spreading worms. Several proposals of rate limiting techniques have appeared in the literature, each with a different take on the impetus behind rate lim­ iting. This paper presents an empirical analysis on diifferent rate limiting schemes using real traffc and attack traces from a sizable network. In the analysis we isolate and investigate the impact of the critical parameters for each scheme and seek to understand how these parameters might be set in realistic network settings. Analysis shows that using DNS-­based rate limiting has substantially lower error rates than schemes based on other traffic statistics. The analysis additionally brings to light a number of issues with respect to rate limiting at large. We explore the impact of these issues in the context of general worm containment. This is joint work with my students Cynthia Wong, Ahren Studer, and staff Stan Bielski. We will be presenting the paper at RAID this year.



Other Videos By Microsoft Research


2016-09-05SSCLI RFP II Capstone Workshop - The Nemerle Project
2016-09-05SSCLI RFP II Capstone Workshop - Transactional, Persistent, Managed Runtime Environments
2016-09-05Toward Human Computer Information Retrieval
2016-09-05SSCLI RFP II Capstone Workshop ΓÇô Framework for Domain-Specific Optimization at Runtime
2016-09-05Internet Advertising and the Generalized Second Price Auction
2016-09-05SSCLI RFP II Capstone Workshop ΓÇô RAIL2 ΓÇô Runtime Assembly Instrumentation Library 2
2016-09-05Chinese Economic Growth: Past, Present and Future
2016-09-05SSCLI RFP II Capstone Workshop ΓÇô Flexible Dynamic Linking for .NET
2016-09-05SpeechPad: Multimodal Text Entry on Mobile Devices
2016-09-05SSCLI RFP II Capstone Workshop - Traits in C#
2016-09-05An Empirical Analysis of Rate Limiting Mechanisms to Contain Internet Worms
2016-09-05Extending Rotor with Structural Reflection to Support Reflective Languages
2016-09-05SSCLI RFP II Capstone Workshop ΓÇô Embedded Formal Verification Assistants in the .NET Framework
2016-09-05SSCLI RFP II Capstone Workshop ΓÇô Gardens Point Generics (GPG)
2016-09-05WACE 2005 - The Automated Lecture Capturing and Broadcasting System in MSRΓÇÖs 1159
2016-09-05Computer Aided Instruction in Graduate Compiler Design Based on the C# Compiler
2016-09-05SSCLI RFP II Capstone Workshop ΓÇô FreeSoDA
2016-09-05Predicting the Unpredictable
2016-09-05SSCLI RFP II Capstone Workshop ΓÇô Implementation of a Non-Strict Functional Language on Rotor
2016-09-05Performance and Feasibility of Capability-Based Security in the Rotor Platform
2016-09-05Moving VoIP beyond the phone


Tags:
microsoft research