Change search
ReferencesLink to record
Permanent link

Direct link
Analysis and Simulation of Threats in an Open, Decentralized, Distributed Spam Filtering System
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, The Institute of Technology.
2012 (English)Independent thesis Basic level (degree of Bachelor), 10,5 credits / 16 HE creditsStudent thesis
Abstract [en]

The existance of spam email has gone from a fairly small amounts of afew hundred in the late 1970’s to several billions per day in 2010. Thiscontinually growing problem is of great concern to both businesses andusers alike.One attempt to combat this problem comes with a spam filtering toolcalled TRAP. The primary design goal of TRAP is to enable tracking ofthe reputation of mail senders in a decentralized and distributed fashion.In order for the tool to be useful, it is important that it does not haveany security issues that will let a spammer bypass the protocol or gain areputation that it should not have.As a piece of this puzzle, this thesis makes an analysis of TRAP’s protocoland design in order to find threats and vulnerabilies capable of bypassingthe protocol safeguards. Based on these threats we also evaluate possiblemitigations both by analysis and simulation. We have found that althoughthe protocol was not designed with regards to certain attacks on the systemitself most of the attacks can be fairly easily stopped.The analysis shows that by adding cryptographic defenses to the protocola lot of the threats would be mitigated. In those cases where cryptographywould not suffice it is generally down to sane design choices in the implementationas well as not always trusting that a node is being truthful andfollowing protocol.

Place, publisher, year, edition, pages
2012. , 62 p.
Keyword [en]
spam, electronic mail, spam filter, trust, threat, mitigation, trap
National Category
Computer Science
URN: urn:nbn:se:liu:diva-81012ISRN: LIU-IDA-EX-G-12/008--SEOAI: diva2:549867
Subject / course
Computer and information science at the Institute of Technology
2012-04-27, Muhammad al-Khwarizmi, Linköpings Universitet, Linköping, 10:00 (English)
Available from: 2012-09-10 Created: 2012-09-05 Last updated: 2012-09-10Bibliographically approved

Open Access in DiVA

fulltext(548 kB)712 downloads
File information
File name FULLTEXT01.pdfFile size 548 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Jägenstedt, Gabriel
By organisation
Database and information techniquesThe Institute of Technology
Computer Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 712 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 97 hits
ReferencesLink to record
Permanent link

Direct link