Medição, caracterização e redução dos custos associados ao tráfego de spam

Detalhes bibliográficos
Ano de defesa: 2016
Autor(a) principal: Osvaldo Luis Henriques de Morais Fonseca
Orientador(a): Não Informado pela instituição
Banca de defesa: Não Informado pela instituição
Tipo de documento: Dissertação
Tipo de acesso: Acesso aberto
Idioma: por
Instituição de defesa: Universidade Federal de Minas Gerais
Programa de Pós-Graduação: Não Informado pela instituição
Departamento: Não Informado pela instituição
País: Não Informado pela instituição
Palavras-chave em Português:
Telecomunicações Tráfego Custos
Spam (Mensagens eletrônicas)
Computação
Redes de computadores
Spam
Técnicas de medição
Topologia de rede
Link de acesso: https://hdl.handle.net/1843/ESBF-AE8R2C
Resumo: Spam messages are often used to propagate malware, to disseminate phishing exploits, and to advertise illegal products. Those messages generate costs for users and network operators, but it is hard to measure how much of their costs are associated with spam traffic, and who actually pays for it. In this work, we provide a method to quantify the transit costs of spam traffic. We issue traceroutes from RIPE Atlas vantage points to estimate the routes traversed by spam messages collected at five honeypots. These collectors simulate vulnerable machines and lead spammers to believe they are interacting with legitimate open relays and proxies. Then we map IP-level traceroute measurements to AS-level paths and use the database of inter-network business relationships to infer the spam traffic costs. Our results show that stub networks are systematically subject to high spam traffic costs and that large ASes can receive twice with the spam traffic of the same message. Furthermore, we show that some networks profit from spam traffic and might not be interested in filtering spam; other networks, even paying for spam traffic, when they can foward these messages to their customers may not be interested in filtering them. Finally, we present a simple but effective algorithm to identify the networks that would benefit in cooperating to filter spam traffic at the origin to reduce transit costs.
id UFMG_3143edee122d5fac36070e00e52d35b8
oai_identifier_str oai:repositorio.ufmg.br:1843/ESBF-AE8R2C
network_acronym_str UFMG
network_name_str Repositório Institucional da UFMG
repository_id_str
spelling Medição, caracterização e redução dos custos associados ao tráfego de spamTelecomunicações Tráfego CustosSpam (Mensagens eletrônicas)ComputaçãoRedes de computadoresSpamTécnicas de mediçãoTopologia de redeSpam messages are often used to propagate malware, to disseminate phishing exploits, and to advertise illegal products. Those messages generate costs for users and network operators, but it is hard to measure how much of their costs are associated with spam traffic, and who actually pays for it. In this work, we provide a method to quantify the transit costs of spam traffic. We issue traceroutes from RIPE Atlas vantage points to estimate the routes traversed by spam messages collected at five honeypots. These collectors simulate vulnerable machines and lead spammers to believe they are interacting with legitimate open relays and proxies. Then we map IP-level traceroute measurements to AS-level paths and use the database of inter-network business relationships to infer the spam traffic costs. Our results show that stub networks are systematically subject to high spam traffic costs and that large ASes can receive twice with the spam traffic of the same message. Furthermore, we show that some networks profit from spam traffic and might not be interested in filtering spam; other networks, even paying for spam traffic, when they can foward these messages to their customers may not be interested in filtering them. Finally, we present a simple but effective algorithm to identify the networks that would benefit in cooperating to filter spam traffic at the origin to reduce transit costs.Universidade Federal de Minas Gerais2019-08-11T03:14:38Z2025-09-09T00:19:42Z2019-08-11T03:14:38Z2016-03-28info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisapplication/pdfhttps://hdl.handle.net/1843/ESBF-AE8R2COsvaldo Luis Henriques de Morais Fonsecainfo:eu-repo/semantics/openAccessporreponame:Repositório Institucional da UFMGinstname:Universidade Federal de Minas Gerais (UFMG)instacron:UFMG2025-09-09T00:19:42Zoai:repositorio.ufmg.br:1843/ESBF-AE8R2CRepositório InstitucionalPUBhttps://repositorio.ufmg.br/oairepositorio@ufmg.bropendoar:2025-09-09T00:19:42Repositório Institucional da UFMG - Universidade Federal de Minas Gerais (UFMG)false
dc.title.none.fl_str_mv Medição, caracterização e redução dos custos associados ao tráfego de spam
title Medição, caracterização e redução dos custos associados ao tráfego de spam
spellingShingle Medição, caracterização e redução dos custos associados ao tráfego de spam
Osvaldo Luis Henriques de Morais Fonseca
Telecomunicações Tráfego Custos
Spam (Mensagens eletrônicas)
Computação
Redes de computadores
Spam
Técnicas de medição
Topologia de rede
title_short Medição, caracterização e redução dos custos associados ao tráfego de spam
title_full Medição, caracterização e redução dos custos associados ao tráfego de spam
title_fullStr Medição, caracterização e redução dos custos associados ao tráfego de spam
title_full_unstemmed Medição, caracterização e redução dos custos associados ao tráfego de spam
title_sort Medição, caracterização e redução dos custos associados ao tráfego de spam
author Osvaldo Luis Henriques de Morais Fonseca
author_facet Osvaldo Luis Henriques de Morais Fonseca
author_role author
dc.contributor.author.fl_str_mv Osvaldo Luis Henriques de Morais Fonseca
dc.subject.por.fl_str_mv Telecomunicações Tráfego Custos
Spam (Mensagens eletrônicas)
Computação
Redes de computadores
Spam
Técnicas de medição
Topologia de rede
topic Telecomunicações Tráfego Custos
Spam (Mensagens eletrônicas)
Computação
Redes de computadores
Spam
Técnicas de medição
Topologia de rede
description Spam messages are often used to propagate malware, to disseminate phishing exploits, and to advertise illegal products. Those messages generate costs for users and network operators, but it is hard to measure how much of their costs are associated with spam traffic, and who actually pays for it. In this work, we provide a method to quantify the transit costs of spam traffic. We issue traceroutes from RIPE Atlas vantage points to estimate the routes traversed by spam messages collected at five honeypots. These collectors simulate vulnerable machines and lead spammers to believe they are interacting with legitimate open relays and proxies. Then we map IP-level traceroute measurements to AS-level paths and use the database of inter-network business relationships to infer the spam traffic costs. Our results show that stub networks are systematically subject to high spam traffic costs and that large ASes can receive twice with the spam traffic of the same message. Furthermore, we show that some networks profit from spam traffic and might not be interested in filtering spam; other networks, even paying for spam traffic, when they can foward these messages to their customers may not be interested in filtering them. Finally, we present a simple but effective algorithm to identify the networks that would benefit in cooperating to filter spam traffic at the origin to reduce transit costs.
publishDate 2016
dc.date.none.fl_str_mv 2016-03-28
2019-08-11T03:14:38Z
2019-08-11T03:14:38Z
2025-09-09T00:19:42Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/masterThesis
format masterThesis
status_str publishedVersion
dc.identifier.uri.fl_str_mv https://hdl.handle.net/1843/ESBF-AE8R2C
url https://hdl.handle.net/1843/ESBF-AE8R2C
dc.language.iso.fl_str_mv por
language por
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv Universidade Federal de Minas Gerais
publisher.none.fl_str_mv Universidade Federal de Minas Gerais
dc.source.none.fl_str_mv reponame:Repositório Institucional da UFMG
instname:Universidade Federal de Minas Gerais (UFMG)
instacron:UFMG
instname_str Universidade Federal de Minas Gerais (UFMG)
instacron_str UFMG
institution UFMG
reponame_str Repositório Institucional da UFMG
collection Repositório Institucional da UFMG
repository.name.fl_str_mv Repositório Institucional da UFMG - Universidade Federal de Minas Gerais (UFMG)
repository.mail.fl_str_mv repositorio@ufmg.br
_version_ 1856413980934799360

Registros relacionados