TECHNOLOGY FOR CHANGE

Digital Ants Rely On Swarm Intelligence to Fight Worms

Stan Gibson | Date: 10-01-09 | Comments

• 41
• PrintPDF
• Filed Under: Technology For Change




• Copying from Mother Nature, security researchers have come up with a new means of detecting and thwarting computer worms and other malware.

• Copying from Mother Nature, security researchers have come up with a new means of detecting and thwarting computer worms and other malware. Their inspiration: the ant.

  An individual ant may not seem impressive, but ants are a highly successful species because they work collectively. Similarly, the security scheme, called Cooperative Infrastructure Defense (CID), relies on small pieces of code that wander across a network relaying information to one another – so-called “swarm intelligence -- the better to identify, surround and destroy security threats.

  “The designs in nature are far superior to what we come up with in science and engineering,” said Glenn Fink, a research scientist at Pacific Northwest National Laboratory (PNNL) in Richland, Wash. Bees and wasps also had lessons to teach, said Fink, who collaborated on CID with scientists from Wake Forest University. PNNL is a research laboratory of the U.S. Department of Energy

  Like an ant colony the relationships between the different bits of code in CID is hierarchical. Each digital ant, or sensor, is a mobile agent that wanders across a network sending its intelligence to higher level, or “sentinel,” where it can be evaluated and sent to a still higher level, the “sergeant,” to be presented to human managers who may observe the problem and take corrective action.

  Each sensor looks for any of 60 different kinds of information. One sensor may identify how many connections a computer has made in the last minute; another may identify how fast log files are being written to; another may identify how many files are open. A sensor will flag an unusual condition, such as 8,000 network connections per minute – a sign that a bot may have taken over a computer.

  
  

  When a problem is spotted the sensors leave behind digital “pheromones,” tiny bits of code that point the way for other sensors to potential problem areas. By following the pheromones, a swarm of ants can converge on a suspected problem to identify and report on a number of different problem characteristics.

  In one experiment a network of 64 Linux systems was intentionally infected with a worm. The CID system detected and diagnosed the problem within minutes, Fink said.

  The sensors and pheromones themselves could clog up a system if left unchecked. Therefore, the pheromones are programmed to decay and disappear over time and the ants also will expire if they are not actively reporting problems after a certain time.

  “We’re trying to be an autonomic defense system. Even though adversaries are changing, we’ll be able to keep up,” said Fink.

  CID is not designed for individual consumers, but for organizations that have a number of computers on a network. Work on the project has been going on for about three years. The code is not yet commercially available, but Fink said it may be released on an open-source basis.

   

IBM Resources

• End to End Virtualization: A holistic approach for a dynamic environment.
• Business Analytics and Optimization Jumpstart: Embedding analytics to transform insights into action
• Cloud computing insights from 110 implementation projects
• Capturing the Potential of Cloud
• Analytics - the new path to value
• Social Business: Advent of a new age
• Becoming a Social Business: The IBM Story
• Meeting the Demands of the Smarter Consumer
• Business agility powers innovation, transformation and growth
• Inside the Midmarket - A 2011 Perspective
• Building a strong enterprise cloud foundation is critical to manage growth for SaaS providers
• Blue Cross Blue Shield of South Carolina: A Model of IT Efficiency
• A Simple Idea that Changed the World

Most Read

• Tablets, Smartphones Obsolete PowerPoint
• Top 10 Innovations of 2012
• Cloud Desktop Boosts Small Business
• Quantum Computing Almost Here
• Recent Reports Examine Smartphone Shopping Behaviors
• Tool Educates SMBs on the Cloud
• Facebook Gaming in Decline
• Meeting the Increasing Demand for Remote Internships
• New Wireless Technology Transforms the Remote

Trending

• Cloud Desktop Boosts Small Business
• Robots Construct Reconfigurable Buildings
• Shipboard Humanoid Robot to Aid Navy
• Facebook Gaming in Decline
• Motion Control Vaults Augmented Reality
• Nintendo Wii Diagnoses Eye Malady
• Smart Cities Win Awards
• Success Depends on Phrasing
• Online Video Spells Death for DVD

RELATED CONTENT

• Swarming Robots to Aid Disaster Recovery
• Collaboration, Coordination Coming Slowly to U.S. Government Cyber-security Effo
• Stopping the Spread: The Future of Deworming Software for Networks
• Security System Monitors Billions of Real-Time Threats
• Ten Business Intelligence Apps We Need in 2009
• Auto-Correcting Cloud Could Fight Threats as they Occur
• Six Most Serious Security Threats for 2011

View the IBM Smarter Analytics Leadership Summit

Videos

TWITTER FEED

• 21 minutes agoGood morning from Los Angeles! #ibmcloud
  
• 24 minutes agoThat's it from me! Over to North America.
  
• 30 minutes agoThe data processing of Roland Garros 2012 (#RG12) rests on IBM Private Cloud http://t.co/JUaY1ItM [French Press release]
  
• about 2 hours agoIBM Accelerates Business from Supply to Demand with New #Cloud Offerings For Smarter Commerce http://t.co/OFxknOb0 [Press Release]
  
• about 3 hours agoHow IBM #SmartCloud Foundation technology powers cloud adoption? IBM VP @SLHebner explains here http://t.co/sSzfa0O5 [VIDEO]
  
• about 4 hours agoIBM's Fiona Cullen will present ‘The Power of #Cloud: Driving Business Model’ On May 24 @ Utrecht, Netherlands #cloudforum2012 #ibmcloud
  
• about 5 hours agoBlog Post: Why service providers should not ignore cloud http://t.co/ZfQyue4r via @eMarcusNet #thoughtsoncloud
  
• about 6 hours agoHave any #cloudmoment? Share your story with us via Twitter, Instagram, YouTube, Facebook and tag it. See other stories http://t.co/J4ntsaQ5
  
• about 7 hours agoSign up now for IBM #SmartCloud Enterprise! No charge for select VMs (only till May 28). More Details >> http://t.co/2LEzOUZC #ibmcloud
  
• about 7 hours agoRT @HansMoen: See this video from @IBMCloud to learn how to cut costs in building innovation in your business http://t.co/XOyJoFn6 #clou ...
  
< PrevNext >

JOIN US

Like us on Facebook Follow us on Twitter Get the Smarter Tech Newsletter Register to view the archived "Data Center Optimization Techniques: Stop Wasting Time & Money" eSeminar Register Now >

Connect with the The Future of IT Architecture blog