Making malware unprofitable: Lend me your ears
by at November 25, 2007 3:58 pm
Sections: Computers, Networking, Security, Software / Applications
|
Sign up for the FREE Tell Membership and receive benefits that include the digital edition of Tell Magazine sent straight to your inbox, product giveaways, coupons and much more!
How can malware be made unprofitable to hackers? It would seem that a loss of green (and we don’t mean environmentally sound), is the only way to cut into the spread of malware. Last week, Stevens University hosted a Security and Privacy Day, organized in conjunction with Columbia University and IBM Research to address this specific issue. Unfortunately, it appears that it is easier for malware authors to mount an attack than it is to defend against one. Sven Dietrich of Stevens discussed the prospects for detecting the activity of bot-nets and tracing them back to their source. Early versions of networked malware followed a design similar to client-server, with standard point-to-point TCP connections back to a central controller. These were relatively simple to defend against. But things have advanced, and since then, communications have moved off TCP entirely and into acknowledgment-free protocols such as UDP, and the content is often encrypted. Bot-nets now communicate on a peer-to-peer basis, either using common methods or with custom code. According to Professor Dietrich:
Although several speakers had hope for a much safer future, none had any suggestions on how to ensure security from the computer science perspective. They stressed, instead, that the cultural aspects of the current malware scene were the key to future security. In the past, hackers were willing to talk with computer scientists, while now news about malware comes in hushed whispers from organized crime networks based largely overseas. Overall, the talks were pretty depressing, given the realization that the operating systems and software we rely on will probably never be truly secure.
Read [arstechnica]
Related Posts