Identifier/locator separation: a worm detection and prevention perspective

Identifier/locator separation is widely recognized as a promising solution to the routing scalability issue of the Internet routing architecture. Although it is believed that networks with identifier/locator separation are more secure than networks without identifier/locator separation, identifier/locator separation cannot evade the damage of worms either. In this paper, we argue that identifier/locator separation can help detect and prevent worms by analyzing and evaluating the worm detection probability and the number of infected machines. The results show that the worm detection in networks with identifier/locator separation is easier than in networks without identifier/locator separation and identifier/locator separation is more resistive to worm propagation. To the best of our knowledge, this is the first attempt on understanding the worm detection and prevention in networks with identifier/locator separation.