Sciweavers

WETICE
2003
IEEE

A Network Worm Vaccine Architecture

14 years 5 months ago
A Network Worm Vaccine Architecture
The ability of worms to spread at rates that effectively preclude human-directed reaction has elevated them to a first-class security threat to distributed systems. We present the first reaction mechanism that seeks to automatically patch vulnerable software. Our system employs a collection of sensors that detect and capture potential worm infection vectors. We automatically test the effects of these vectors on appropriately-instrumented sandboxed instances of the targeted application, trying to identify the exploited software weakness. Our heuristics allow us to automatically generate patches that can protect against certain classes of attack, and test the resistance of the patched application against the infection vector. We describe our system architecture, discuss the various components, and propose directions for future research.
Stelios Sidiroglou, Angelos D. Keromytis
Added 05 Jul 2010
Updated 05 Jul 2010
Type Conference
Year 2003
Where WETICE
Authors Stelios Sidiroglou, Angelos D. Keromytis
Comments (0)