Resilient infrastructure for network security

Complexity

Volumn 9, Issue 2, 2003, Pages 34-40

  Williamson, Matthew M ^a  

^a HEWLETT PACKARD LABORATORIES   (United Kingdom)

Author keywords

Benign response; Infrastructure; Network security; Resilience

Indexed keywords

EID: 2142714171     PISSN: 10762787     EISSN: None     Source Type: Journal    
DOI: 10.1002/cplx.20005     Document Type: Conference Paper

References (22)

1. Cohen, F. A Short Course on Computer Viruses; John Wiley & Sons: New York, 1994.
2. Nachenberg, C. Computer parasitology. In: Proceedings of the Virus Bulletin International Conference, 1999; pp 1-26.
3. Groove Networks, 2002. http://www.groove.net.
4. Grimes, R.A. Malicious Mobile Code: Virus Protection for Windows; O'Reilly & Associates, Inc.: 2001.
5. Rescorla, E. Security holes...who cares? In: Proceedings of the 12th USENIX Security Symposium, USENIX, August 2003; pp 75-90.
6. CERT. CERT Advisory CA-2001-19 "Code Red" Worm Exploiting Buffer Overflow In: IIS Indexing Service DLL, July 2001. Available at http://www.cert.org/ advisories/CA-2001-19.html.
7. Staniford, S.; Paxson, V.; Weaver, N. How to own the internet in your spare time. In: Proceedings of the 11th USENIX Security Symposium (Security '02), 2002. Available at http://www.icir.org/vern/papers/cdc-usenix-sec02/.
8. Newman, D.; Snyder, J.; Thayer, R. Crying wolf: False alarms hide attacks. Network World Fusion, June 2002. Available from http://www.nwfusion. com/ techinsider/2002/0624security1.html.
9. Axelsson, S. The base-rate fallacy and its implications for the difficulty of intrusion detection. In: Proceedings of the 6th ACM Conference on Computer and Communications Security, Singapore, 1999.
10. Williamson, M.M. Throttling viruses: Restricting propagation to defeat malicious mobile code. In: Proceedings of ACSAC Security Conference, Las Vegas, Nevada, December 2002; pp 61-68. Available from http://www.hpl.hp.com/ techreports/2002/HPL-2002-172.html.
11. Williamson, M.M. Design, implementation and test of an email virus throttle. In: Proceedings of ACSAC Security Conference, Las Vegas, Nevada, December 2003. Available from http://www.hpl.hp.com/techreports/2003/HPL-2003- 118.html.
12. Heberlein, L.; Dias, G.; Levitt, K.; Mukherjee, B.; Wood, J.; Wolber, D. A network security monitor. In: Proceedings of the IEEE Symposium on Security and Privacy, IEEE Press, May 1990; pp 296-304. http://seclab.cs.ucdavis.edu/ papers/pdfs/th-gd-90.pdf.
13. Hofmeyr, S.A., An Immunological Model of Distributed Detection and Its Application to Computer Security. Ph.D. thesis. Department of Computer Science, University of New Mexico, April 1999.
14. Twycross, J.; Williamson, M.M. Implementing and testing a virus throttle. In: Proceedings 12th USENIX Security Symposium, 2003; pages 285-294, Washington DC, August 2003. USENIX. Available from http://www.hpl.hp.com/techreports/2003/ HPL-2003-103.html.
15. CERT. CERT Advisory CA-2001-26 Nimda Worm, September 2001. Available at http://www.cert.org/advisories/CA-2001-26.html.
16. Messmer, E. Behavior blocking repels new viruses. Network World Fusion News January 2002. Available from http://www.nwfusion.com/news/2002/ 0128antivirus.html.
17. Bruschi, D.; Rosti, E. Disarming offense to facilitate defense. In: Proceedings of the New Security Paradigms Workshop, Cork, Ireland, September 2000.
18. Bruschi, D.; Rosti, E. Angel: A tool to disarm computer systems. In: Proceedings of the New Security Paradigms Workshop, Cloudcroft, NM, September 2002.
19. Mirković, J.; Prier, G.; Reiher, P. Attacking DDoS at the source. In: Proceedings of International Conference on Network Protocols (ICNP), Paris, France, November 2002; pp 312-321.
20. Somayaji, A.; Forrest, S. Automated response using system-call delays. In: Proceedings of the 9th USENIX Security Symposium, Denver, CO, August 2000; pp 185-197.
21. Somayaji, A.B. Operating System Stability and Security through Process Homeostasis. Ph.D. thesis. University of New Mexico, Alberquerque, NM, June 2002. Available from http://www.cs.unm.edu/~soma/pH/.
22. Williamson, M.M.; Léveillé, J. An epidemiological model of virus spreading and cleanup. In: Proceedings Virus Bulletin Conference, Toronto, Canada, September 2003. Virus Bulletin.