Language Selection

English French German Italian Portuguese Spanish

Worms could dodge Net traps

Filed under
Security

In a pair of papers presented at the Usenix Security Symposium here Thursday, computer scientists said would-be attackers can locate such sensors, which act as trip wires that detect unusual activity. That would permit nefarious activities to take place without detection.

Internet sensor networks, such as the University of Michigan's Internet Motion Sensor and the SANS Internet Storm Center, are groups of machines that monitor traffic across active networks and chunks of unused IP space. The sensor networks generate and publish statistical reports that permit an analyst to track the traffic, sniff out malicious activity and seek ways to combat it.

Just as surveillance cameras are sometimes hidden, the locations of the Internet sensors are kept secret. "If the set of sensors is known, a malicious attacker could avoid the sensors entirely or could overwhelm the sensors with errant data," a team of computer scientists from the University of Wisconsin wrote in its award-winning paper titled "Mapping Internet Sensors with Probe Response Attacks."

But the Wisconsin researchers discovered that the sensor maps furnish just enough information for someone to create an algorithm that can map the location of the sensors "even with reasonable constraint on bandwidth and resources," John Bethencourt, one of the paper's authors, said in his presentation.

Full Story.

More in Tux Machines

Debian-Based Clonezilla Live 2.4.2-29 Is Out with Partclone 0.2.81 and Lots of Bugfixes

On the first day of August 2015, Steven Shiau has released a new testing version of his popular Clonezilla Live CD, which can be used for disk cloning and imaging operations, version 2.4.2-29. Read more

Arch Linux-Based BlackArch Penetration Testing Distro Now Using Linux Kernel 4.1 LTS

The development team behind the BlackArch project, a GNU/Linux distribution derived from Arch Linux and designed to be used for penetration testing and security analysis operations, released an updated installation media, BlackArch 2015.07.31. Read more

Linus Torvalds warns he's in no mood to be polite as Linux 4.2 drags

Linus Torvalds' regular Sunday night missive on the state of kernel development has labelled version 4.2 as a bit of a problem child and warned he “might not react politely” to some developer requests. Announcing the release of release candidate five (rv5), Torvalds says “it's looking like 4.2 might be one of the releases needing more than the usual seven rc releases.” Read more

Simplicity Linux 15.7 Officially Released, Based on LXPup and Linux Kernel 4.1 LTS

As reported at the beginning of July, David Purse, the developer of the Simplicity Linux distribution, announced the release and immediate availability for download of the final version of his Simplicity Linux 15.7 operating system on July 30, 2015. Read more