A control measure framework to limit collateral damage and propagation of cyber weapons

International Conference on Cyber Conflict, CYCON

Volumn , Issue , 2013, Pages

  Raymond, David ^a   Conti, Gregory ^a   Cross, Tom ^b   Fanelli, Robert ^c  

^a UNITED STATES MILITARY ACADEMY   (United States)

^b Lancope   (United States)

^c United States Cyber Command   (United States)

Author keywords

collateral damage; cyber operations; law of armed conflict; malware controls

Indexed keywords

COMPUTER CRIME; DAMAGE DETECTION;

ARMED CONFLICT; COLLATERAL DAMAGE; CONTROL MEASURES; CRITICAL ANALYSIS; CYBER OPERATIONS; MALICIOUS SOFTWARE; PAPER SURVEYS; U.S. DEPARTMENT OF DEFENSE;

MALWARE;

EID: 84904396614     PISSN: 23255366     EISSN: 23255374     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (33)

1. E. Spafford, The Internet Worm Program: An Analysis, Purdue University Technical Report CSD-TR-823, 1988.
2. Federal Bureau of Investigations, DNSChanger Malware, September 2012. [Online]. Available: http://www.fbi.gov. [Accessed 4 September 2012].
3. Falliere, L. Murchu and E. Chien, W32.Stuxnet Dossier, v1.4, Feb 2011. [Online]. Available: http://www.symantec.com. [Accessed September 2012].
4. E. Tikk, K. Kaska, K. Runnimeri, M. Kert, A. Taliharm and L. Vihul, Cyber Attacks Against Georgia: Legal Lessons Identified, Tallin, Estonia, November 2008.
5. M. Johnson, Georgian Websites Under Attack-Don't Believe the Hype, August 2008. [Online]. Available: www.shadowserver.org. [Accessed 4 September 2012].
6. M. Walzer, Just and Unjust Wars, New York: Basic Books, 1977.
7. D. Ball, China's Cyber Warfare Capabilities, Security Challenges, vol. 7, no. 2, pp. 81-103, Winter 2011.
8. D. J. Smith, How Russia Harnesses Cyber War, Defense Dossier, vol. 4, pp. 7-11, August 2012.
9. I. Berman, Cyberwar and Iranian Strategy, Defense Dossier, vol. 4, pp. 12-15, August 2012.
10. F. Cohen, Computer Viruses, Theory and Experiments, Computers and Security, vol. 6, no. 1, 1987.
11. M. Ludwig, The Little Black Book of Computer Viruses, Show Low, AZ: American Eagle Publishing, 1990.
12. M. Ludwig, The Big Black Book of Computer Viruses, Show Low, AZ: American Eagle Publishing, 1995.
13. R. Fanelli and G. Conti, A Methodology for Cyber Operations Targeting and Control of Collateral Damage in the Context of Lawful Armed Conflict, in International Conference on Cyber Conflict (CyCon), Tallinn, Estonia, June 2012.
14. Virus:Boot/Stoned, F-Secure, [Online]. Available: http://www.f-secure. com. [Accessed 1 October 2012].
15. Jerusalem, F-Secure, [Online]. Available: http://www.f-secure.com. [Accessed 30 September 2012].
16. Michelangelo (computer virus), [Online]. Available: http://en.wikipedia. org. [Accessed 12 October 2012].
17. M. Lee, Flame Used Windows Update to Spread, 5 June 2012. [Online]. Available: http://www.zdnet.com. [Accessed 4 August 2012].
18. D. Sancho, J. D. Torre, M. Bakuei, N. Villeneuve and R. McArdle, IXESHE: An APT Campaign, Trend Micro Research Paper, September 2012.
19. N. Fitzgibbon and M. Wood, Conficker.C: A Technical Analysis, 2009.
20. X. Chen, J. Andersen, Z. M. Mao, M. Bailey and J. Nazario, Towards an Understanding of Anti-virtualization and Anti-debugging Behavior in Modern Malware, in IEEE International Conference on Dependable Systems and Networks (DNS), Ann Arbor, MI, June 2008.
21. Worm:W32/Mydoom, [Online]. Available: http://www.f-secure.com. [Accessed 18 December 2012].
22. Worm:W32/Welchi, F-Secure, [Online]. Available: http://f-secure.com/. [Accessed 30 December 2012].
23. Virus alert about the Blaster worm and its variants, Microsoft, [Online]. Available: http://support.microsoft.com. [Accessed 18 December 2012].
24. D. Moore, C. Shannon and J. Brown, Code-Red: a case study on the spread and victims of an Internet Worm, in 2nd ACM SIGCOMM Workshop on Internet Measurement, Marseille, France, November 2002.
25. J. C. Dolak, The Code Red Worm, SANS Institute Reading Room, 2001.
26. Carnegie-Mellon University Software Engineering Institute, CERT Advisory CA-1999-04 Melissa Macro Virus, March 1999. [Online]. Available: http://www.cert.org. [Accessed 12 August 2012].
27. Virus:W32/Concept, F-Secure, [Online]. Available: http://f-secure.com. [Accessed 12 October 2012].
28. Frodo, [Online]. Available: http://virus.wikia.com. [Accessed 14 December 2012].
29. Elk Cloner, [Online]. Available: http://virus.wikia.com. [Accessed 12 December 2012].
30. B. Schneier, Stuxnet, 7 Oct 2007. [Online]. Available: http://www.schneier.com. [Accessed 19 December 2012].
31. D. Sanger, Obama Order Sped Up Wave of Cyberattacks Against Iran, 1 July 2012. [Online]. Available: http://www.nytimes.com. [Accessed 25 July 2012].
32. IETF, RFC 1006-ISO Transport Service on top of the TCP, May 1987. [Online]. Available: http://tools.ietf.org/. [Accessed 1 December 2012].
33. Kaspersky Labs, The Mystery of the Encrypted Gauss Payload, 14 August 2012. [Online]. Available: http://www.securelist.com. [Accessed 20 Dec. 2012].