Homepage
 
Search
SOLUTIONS TECHNOLOGY ERICSSON
Ericsson Global
Home
Defending Mobile Phones from Proximity Malware 
Defending Mobile Phones from Proximity Malware

Author(s):
Gjergji Zyba, Geoffrey Voelker, Michael Liljenstam, András Méhes, Per Johansson


Proceedings of the 28th Annual IEEE Conference on Computer Communications (INFOCOM'09), Rio de Janeiro, Brazil, April, 2009.

 

Download document:
Defending Mobile Phones from Proximity Malware (pdf)

Abstract:
As mobile phones increasingly become the target of propagating malware, their use of direct pair-wise communication mechanisms, such as Bluetooth and WiFi, pose considerable challenges to malware detection and mitigation. Unlike malware that propagates using the network, where the provider can employ centralized defenses, proximity malware can propagate in an entirely distributed fashion. In this paper we consider the dynamics of mobile phone malware that propagates by proximity contact, and we evaluate potential defenses against it. Defending against proximity malware is particularly challenging since it is difficult to piece together global dynamics from just pair-wise device interactions. Whereas traditional network defenses depend upon observing aggregated network activity to detect correlated or anomalous behavior, proximity malware detection must begin at the device. As a result, we explore three strategies for detecting and mitigating proximity malware that span the spectrum from simple local detection to a globally coordinated defense. Using insight from a combination of real-world traces, analytic epidemic models, and synthetic mobility models, we simulate proximity malware propagation and defense at the scale of a university campus. We find that local proximity-based dissemination of signatures can limit malware propagation. Globally coordinated strategies with broadcast dissemination are substantially more effective, but rely upon more demanding infrastructure within the provider.


Notice:
Copyright 2009 IEEE. This material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any of Ericsson's products or services. Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE by writing to pubs-permissions@ieee.org. By choosing to view this document, you agree to all provisions of the copyright laws protecting it.

In order to read PDF files, you need to have Adobe® Acrobat® Reader® installed in your computer. You can download the latest Acrobat® Reader® for free from Adobe's website.

Wireless
Contact   |   Legal   |   Privacy (cookies)