Read up on the latest ideas and technologies from companies that sell hardware, software and services. Newsletter Subscription
Forget about patches. Researchers at the Florida Institute of Technology are looking for ways to fight hackers by modelling their methods, or “exploits”. The research could eventually lead to new types of security tools capable of stopping attacks that hackers haven’t even invented yet.
The effort is being led by James Whittaker, an associate professor and director of the school’s Centre for Software Engineering Research. Whittaker, a security author and member of Microsoft’s Trustworthy Computing Academic Advisory Board, says hackers have always had the upper hand — and always will — because they can dedicate all of their time to the task of breaking through security systems. “Microsoft, Sun, Cisco — they all have products to ship. They have a day job,” Whittaker says. “Security is only one of the things that they’re thinking of. These hackers, the only thing they do is sit around trying to break stuff.”
To counteract the hackers’ apparent advantage, Whittaker and his team are attempting to create detailed models of both the intent and the semantics of every possible hacker attack. The group has also created a computer language to describe these models. Ideally, Whittaker proposes, this information could be made public, giving software developers in both government and private industry a test bed for creating highly secure software. Security product makers — firewall manufacturers and the like — meanwhile, could build the models into their products as a means of identifying and defending against as-yet unknown assaults.
The group is currently modelling standard types of attacks, but Whittaker says the team will branch out and begin to include behavioural scientists who could help model the psychology of hackers to further refine the models. The US government seems to believe the work will pay off. Florida Tech recently received a $US70,000 grant from the Air Force Research Laboratory to continue the research, and Whittaker says the group has already received more than a million dollars in aid for the project.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
CIO Live Podcast #79: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires Part II 05 October, 2007 06:00:00
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #78: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires 28 September, 2007 17:34:25
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #77: Panasonic Speeds Up Trans-Pacific File Transfers, Part III 21 September, 2007 07:00:00
Part three in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #76: Panasonic Speeds Up Trans-Pacific File Transfers, Part II 14 September, 2007 07:00:00
Part two in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #75: Panasonic Speeds Up Trans-Pacific File Transfers, Part I 07 September, 2007 07:00:05
Part one in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
- +
Inside Symantec's Security Operations Center 16 October, 2008 07:38:00
For Symantec clients, the Symantec Security Operations Center is the front line in the fight against network attacks. CSO toured the facility for an overview of how the services work, and for a look at some of the latest threats on the internet todayThe inside of the Symantec Security Operations Center looks like a scene out of the movie "War Games," and in many ways, the connection is fitting. The SOC, as it is known by Symantec employees, is in the business of detecting and analyzing network threats. And as malicious activity online gets increasingly more sophisticated, the war against cybercrime is definitely on. - +
Cyber security threats grow in sophistication, subtlety 16 October, 2008 08:26:00
Researchers say malware, botnets, cyber warfare, threats to VoIP and mobile devices, and the "evolving cyber crime economy" are ever-more sophisticated threatsThe annual report from Georgia Tech Information Security Center identifies five evolving cyber security threats, and the news is not good. - +
Tough economic climate can heighten insider threat 16 October, 2008 07:09:00
As companies downsize, they need to keep an eye out for disgruntled employeesWith a faltering economy resulting in increased jobs cuts and corporate belt tightening, security analysts are warning companies to be especially vigilant about protecting their data and networks against disgruntled employees. - +
Anonymous proxy servers: Necessary or evil? 15 October, 2008 07:13:00
Some security experts believe anonymous proxy servers are only necessary if you're up to no good, while others see them as a legitimate tool for research, pen testing and the like. Who's right?If there is truly a gray zone in the struggle between online good and evil, anonymous proxy servers live there. - +
Four security lessons from the World Bank breach 15 October, 2008 07:39:00
The World Bank is making headlines after a disputed report claims hackers managed to access their secure network for over a year. One security pro offers takeaways that everyone can learn from the breachAccording to a report from Fox News, several servers at the World Bank Group, an organization that offers economic assistance to developing countries around the globe, were repeatedly compromised and breached over the course of the last year.
Progress Software Selected for ACORD Standards Framework 16 October, 2008 09:45:00
Tandberg Data lifts RDX® QuikStor™ capacity to 500GB and offers continuous data protection 16 October, 2008 09:23:00
Kroll Ontrack Offers More Complete Data Recovery Solution with SSD And Flash Capabilities 16 October, 2008 09:00:00
Infohrm Launches 4G SaaS-based Workforce Planning, Reporting, and Analytic Solution 16 October, 2008 08:04:00
Polaris Installs Massive Generators 15 October, 2008 11:30:00
|
||
|
||
|
|
||
|
Strategies for Eliminating .PST Files
Join industry expert Martin Tuip to discover best practice strategy for the archival and removal of .PST files using email archiving. Learn how to ensure long-term email records are there when needed, and reduce the risk to your business and clients.
Subscribe to CIO
