关键词: 蠕虫，对等网络蠕虫，对等网络，良性益虫，防御策略

Abstract: P2P worms employ the distinctive features of P2P network, such as the local routing table, application routing mechanism and so on, to quickly distribute them into the network while holding the covert characteristic. Contrarily, the common Internet worms generally rely on detecting the victims' IP address to spread.Therefore, the lack of hidden feature and feasible promulgating paths make that it is easier to detect and defense the ordinary Internet worms than P2P worms. Consequently, the P2P worm can do more damage to the network if lacking the effective defensive scheme. In this paper, the P2P worm, especially its transmission mechanism was analyzed synthetically. I}hen, an anti worm based scheme for the defensive of P2P worm was presented. The principle and functional modules of this new scheme were addressed as well.By using the Peersim P2P simulator, the performance of our novel scheme was evaluated experimentally in various system parameters. The primary experimental results indicated that our anti-worm based defensive scheme for P2P worm has the features of fast convergence, low overload of networking resource(including communication traffic and computing power),and high adaptability.

Key words: Worm, P2P worm, P2P network, Anti-worm, Defensive policy