Botnets have become an increasing security concern in todays Internet. Thus far the mitigation to botnet attacks is a never ending arms race focusing on technical approaches. In this chapter, we model botnet-related cybercrimes as a result of profit-maximizing decision-making from the perspectives of both botnet masters and renters/attackers. From this economic model, we can understand the effective rental size and the optimal botnet size that can maximize the profits of botnet masters and attackers. We propose the idea of using virtual bots (honeypots running on virtual machines) to create uncertainty in the level of botnet attacks. The uncertainty introduced by virtual bots has a deep impact on the profit gains on the botnet market. With decreasing profitability, botnet-related attacks such as DDoS are reduced if not eliminated from the root cause, i.e. economic incentives.
CITATION STYLE
Li, Z., Liao, Q., & Striegel, A. (2009). Botnet Economics: Uncertainty Matters. In Managing Information Risk and the Economics of Security (pp. 245–267). Springer US. https://doi.org/10.1007/978-0-387-09762-6_12
Mendeley helps you to discover research relevant for your work.