TECHNOLOGY FOR CHANGE

Stopping the Spread: The Future of Deworming Software for Networks

Dave Greenfield | Date: 04-02-10 | Comments

• 50
• PrintPDF
• Filed Under: Technology For Change




• Researchers at Pennsylvania State University are taking on Conficker, developing deworming software that could stop the spread of such worms and viruses before they infect other networks.

• Fears of the Conficker virus rival the hysteria that often accompanies news of impending pandemics. The self-recreating worm infected millions of computers, creating security vulnerabilities. England’s Greater Manchester Police Department is feeling the lingering effects of the worm: The department detected Conficker in its system and had to keep its computers off of a national criminal database as a result. Researchers at Pennsylvania State University (PSU) are taking on Conficker, developing deworming software that could stop the spread of such worms and viruses before they infect other networks.

  The software builds off of existing ADS, or anomaly detection system, algorithms. The PSU research team is designing it to protect other computers from falling victim to Conficker or other invaders. It works by alerting your network’s intrusion-detection system to scan within the network. Some of this is legitimate, and the new algorithm can estimate how much of this scanning can go on before a device is locked out, preventing the spread to other machines.

  If the algorithm detects anomalous scanning, it initiates a lockdown. This is different from software now on the market, which, according to PSU professor Peng Liu, “does not know what the best threshold is.” That is, it can fail to alert the network to a worm or, on the other extreme, it can disrupt activity with false alarms. Liu adds, “Network traffic is so complicated that you can’t just fire off an alert each time you see something that’s abnormal.”

  The software will buy time by blocking some machines from the network. This will keep a virulent worm from spreading, but if uninfected computers are targeted, it can cause disruption throughout the entire network.

  PSU’s software is a step forward in creating programs that can detect anomalous scanning without throwing false alarms that disrupt operation. The hope is that such software will help prevent the widespread infection caused by Conficker and other worms.

   

IBM Resources

• End to End Virtualization: A holistic approach for a dynamic environment.
• Business Analytics and Optimization Jumpstart: Embedding analytics to transform insights into action
• Cloud computing insights from 110 implementation projects
• Capturing the Potential of Cloud
• Analytics - the new path to value
• Social Business: Advent of a new age
• Becoming a Social Business: The IBM Story
• Meeting the Demands of the Smarter Consumer
• Business agility powers innovation, transformation and growth
• Inside the Midmarket - A 2011 Perspective
• Building a strong enterprise cloud foundation is critical to manage growth for SaaS providers
• Blue Cross Blue Shield of South Carolina: A Model of IT Efficiency
• A Simple Idea that Changed the World

Most Read

• Top Five Cloud Trends for 2012
• New Tool Analyzes Data Without Bias
• Real-Time Analytics Takes a Bite Out of Crime
• Hadoop Takes a Giant Step Toward the Enterprise
• Universities Worldwide to Introduce Analytics Education
• Chattanooga Builds a Smart City
• Software Development Gets Agile
• Smarter App Prototyping Sans Programming
• Brain Microchip Faster Than Humans

Trending

• Rolls-Royce, ASU Partnership to Combat Billions in Health Insurance Fraud
• Video Analytics Boosts Business Intelligence
• Technology Transforming IT in 2012
• Print/TV Ads Retread for Social Media
• Is Voice Microblogging the Next Social Media Trend?
• Cyber Monday Sees Massive Growth
• How to Improve Crowd-Sourced Information
• App Tracks New Year's Resolutions Progress
• Giving Big Beats Giving More

RELATED CONTENT

• Part 2: Benefits Abound When Marrying Health Care With Social Media
• Synergies Abound When Health Care Organizations Tap Social Media
• Six Most Serious Security Threats for 2011
• Cyber-warriors Smarten Up on Virtual Battlefields
• Delivering Instant Message Security and Compliance Through the Cloud
• Headache? Cough? Maybe You`re Infected with a Computer Virus
• Las Vegas PD to Get Crime Analytics

Videos

TWITTER FEED

• about 4 hours agoThe Smarter Computing Daily is out! http://t.co/FR7642Ug â–¸ Top stories today via @dlpmarketing @ibmemergingtech @jennifertaylor
  
• Feb 7th 11:48 AMThe Smarter Computing Daily is out! http://t.co/FR7642Ug â–¸ Top stories today via @walterfalk @vasfigucer @ibmsmrtrcmptng
  
• Feb 7th 9:10 AMPhoto: Manage XIV Storage with this new iPhone app http://t.co/kMdsvKs3
  
• Feb 7th 8:53 AMVideo: Manage XIV On the Go with an iPhone (by ibmstorage) http://t.co/nQHwXBVZ
  
• Feb 7th 8:44 AM"How can I get some of this SSD goodness?" http://t.co/RxJJTzXh
  
• Feb 6th 11:48 AMThe Smarter Computing Daily is out! http://t.co/FR7642Ug â–¸ Top stories today via @tashkhet @sroetenibm @dennisibm @ibmbigdata @ibmdirecto_es
  
• Feb 6th 9:56 AMRT @DutchCloud: Dutch Cloud Awarded as IBM Business Partner of the Year 2011 for Cloud Innovation !!!
  
• Feb 5th 11:48 AMThe Smarter Computing Daily is out! http://t.co/FR7642Ug â–¸ Top stories today via @palmtwo @prof_eder @vasfigucer @bnhall
  
• Feb 4th 11:47 AMThe Smarter Computing Daily is out! http://t.co/FR7642Ug â–¸ Top stories today via @ibmnetezza @steph_wacongne @pyyhtia @avnetretailpath
  
• Feb 3rd 11:48 AMThe Smarter Computing Daily is out! http://t.co/FR7642Ug â–¸ Top stories today via @fangfeng88 @hopley @letterlearning @ibmsmrtrcmptng
  
< PrevNext >

JOIN US

Like us on Facebook Follow us on Twitter Get the Smarter Tech Newsletter Register for the "Data Center Optimization Techniques: Stop Wasting Time & Money" eSeminar on Thursday February 16 at 10:00 a.m. Pacific / 1:00 p.m. Eastern.Register Now >

Connect with the The Future of IT Architecture blog