| Publisher | Microsoft | ||
|---|---|---|---|
| Format | 72.7KB PDF | Date added | 12 Nov 2004 |
| Topics | Network Security, Security Management | ||
| Downloads | 8 | ||
Worm containment must be automatic because worms can spread too fast for humans to respond. Recent work has proposed a network centric approach to automate worm containment: network traffic is analyzed to derive a packet classifier that blocks (or rate-limits) worm propagation. This approach has fundamental limitations because the analysis has no information about the application vulnerabilities exploited by worms. This paper proposes Vigilante, a new host centric approach for automatic worm containment that addresses these limitations. Vigilante relies on collaborative worm detection at end hosts in the Internet but does not require hosts to trust each other. Hosts detect worms by analysing attempts to infect applications and broadcast Self-Certifying Alerts (SCAs) when they detect a worm.
Did you find this white paper useful?
29 out of 50 users found this white paper useful
Related white papers
Balancing Security Against Productivity
What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...
Novell Zenworks Endpoint Security Management: Total Control from a Single Console
Still super gluing your USB ports shut? Unauthorized access to networks, lost or stolen laptops and other mobile hardware, and theft of proprietary information or intellectual property accounted for more...
Secure Desktop On-Demand Webcast
The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...
ISA Server 2004 Technical Overview - Level 200
This webcast will take an in-depth look at Internet Security and Accelerator Server 2004. ISA Server 2004 is the advanced application layer firewall, VPN, and Web cache solution that enables...
Ensuring Mobile Security in an Unwired World
It started with executives, but now it seems your entire end-user community is mobile - checking email on handhelds and smartphones, updating enterprise applications from remote laptops, connecting to the...
Cisco ACNS Web Content Security Solution Helps Rohm And Haas Protect Assets And Reduce Expenses
Rohm and Haas is a worldwide producer of specialty industrial and consumer materials. Rohm and Haas want to maximize WAN efficiency to reduce ongoing communications costs, reduce liability related to...
Cyber Security Standards for the Power Industry
This webcast explains the basis of vulnerabilities in power companies' information systems, requirements imposed by the new NERC standards, and how to get started on compliance activities.
