2003 Articles
A Network Worm Vaccine Architecture
The ability of worms to spread at rates that effectively preclude human-directed reaction has elevated them to a first-class security threat to distributed systems. We present the first reaction mechanism that seeks to automatically patch vulnerable software. Our system employs a collection of sensors that detect and capture potential worm infection vectors. We automatically test the effects of these vectors on appropriately-instrumented sandboxed instances of the targeted application, trying to identify the exploited software weakness. Our heuristics allow us to automatically generate patches that can protect against certain classes of attack, and test the resistance of the patched application against the infection vector. We describe our system architecture, discuss the various components, and propose directions for future research.
Subjects
Files
- worm-vaccine.pdf application/pdf 70.6 KB Download File
Also Published In
- Title
- Twelfth IEEE International Workshops on Enabling Technologies Infrastructure for Collaborative Enterprises : WET ICE 2003: proceedings: June 9-11, 2003: Johannes Kepler University of Linz, Austria
- Publisher
- IEEE Computer Society
- DOI
- https://doi.org/10.1109/ENABL.2003.1231411
More About This Work
- Academic Units
- Computer Science
- Published Here
- July 12, 2012