Question: A self-propagation malware works as follows. When a machine is infected, it will initiate TCP connections with other machines that it has connected with before.

A self-propagation malware works as follows. When a machine is infected, it will initiate TCP connections with other machines that it has connected with before. Then 240KB data will be transferred to the target to infect it. Assume that the traffic is NOT encrypted.

Please explain, if we are using software defined networks (SDN), how can we detect and mitigate such attacks? Please discuss from the following aspects:

(1) what type of information does the SDN controller need to collect from network traffic and analyze to detect the anomaly?

(2) After detection, what will the controller do to stop further malware propagation?

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Computer Network Questions!

We are hired as consultants to assist Arctica Co. In accounting for Its warranty expenses. Arctica offers a one-year warranty covering parts on each snowmobile it sells. The following Tableau...

1 What are the main components of personal financial planning? Solve What is the purpose of a financial plan? Solve Identify some common actions taken to achieve financial goals. How does a job...

Planning is one of the most important management functions in any business. A front office managers first step in planning should involve determine the departments goals. Planning also includes...

We will be working with a company called Global Bike Inc., (GBI). Information regarding GBI follows. Company History Global Bike Inc. has a pragmatic design philosophy that comes from its deep roots...

I have to create a program in C and I can't figure it out. The program has to read a source file. Please help. /******************************************************************** PROJECT: Glossary...

This is from my Computer Networks and Data Communication Class: Please Provide me all the details as it asks in the assignment (If you fail to provide details i will loose massive points) I want...

There are two problems due this week (each worth 35 points) as follows. Case 5-1David L. Miller: Portrait of a White-Collar Criminal (page 144). In comprehensive paragraphs, answerrequirements 1?6....

Hi Accounting experts, Badly needed your help here! Thank you so much in advance. QUESTION: How is break even analysis relevant in this case? How about the payback period in Capital Budgeting for the...

Java protests instead of sending messages as message.Characterize, in a programming language documentation of your choice, a recursive drop parser that will foster the hypothetical sentence structure...

A chief information security officer ( CISO ) seeks to raise employee awareness of the dangers of malware in the organization. Which of the following is the best approach? A . The CISO should...

part 1 Please list the scenarios you played. 1. students need to play 2 scenarios. For grading purposes, I will select the best two scenarios for graduate students and the best one for undergraduate...

Research an international group, NGO, or other similarly situated group and explain. How this group is helping to engage an international audience. If this is an area of interest or passion for you...

Mr. Howard Reed, a successful local contractor, would like your advice on the best way to achieve several desired personal results and minimize payment of federal income taxes. Mr. Reed, who is a...

The purpose of an accounting information system ( AIS ) is to collect, store, and process financial and accounting data and produce informational reports that managers or other interested parties can...

The following amounts were taken from the accounting records of Padget Home Services, Inc., as of December 31, 20Y7. Padget Home Services began its operations on January 1, 20Y7.. Instructions 1....

Goodwill Impairment: Information has been collected regarding Casey Incorporated cash- generating unit that includes goodwill. At 31 December 20X5, the assets of the Caseys cash- generating unit are...

In the current year, Kennedy Corporation is deemed to be a PHC and reports the following results: Taxable income $400,000 Federal income taxes 136,000 Dividends paid to Marlene, Kennedys sole...

Les Stanley established an insurance agency on July 1, 20Y5, and completed the following transactions during July: a. Opened a business bank account in the name of Stanley Insurance Inc., with a...

6 Theory of Machines 5. A shaft carries five masses A, B, C, D and E which revolve at the same radius in planes which are equidistant from one another. The magnitude of the masses in planes A, C and...

Doug Brenhouse leaned back in his office chair and took a moment to himself away from the turmoil involved with the biggest decision of his professional life. Should he and his two cofounders, John...

Identify some early, lowcost market tests that you can use to refine your opportunity. Create a schedule of escalating market tests to iterate to the strongest opportunity.

Who have you shared your vision with? a. Who have they referred you to? b. What new learning have you gained from these conversations?

2. What diagnostic plot can you use to determine whether the incorrect model has been used? What should the plot look like if the correct model has been used?

4. The normal probability plot and the residuals versus fitted values were generated using the MINITAB regression analysis program for the data that follow ( Exercise 18, Section 12.1). Does it...

17. Armspan and Height II In Exercise 22 (Section 12.1), we measured the armspan and height of eight people with the following results: a. Do the data provide sufficient evidence to indicate that...