Featured Research

from universities, journals, and other organizations

Putting A 'Korset' On The Spread Of Computer Viruses: Invention Stays One Step Ahead Of Anti-virus Software

Date:
September 15, 2008
Source:
American Friends of Tel Aviv University
Summary:
Anti-virus companies play a losing game. Casting their nets wide, they catch common, malicious viruses and worms, but it may take days before their software updates can prepare your computer for the next attack. By then it could be too late. And some insidious programs prove immune to anti-virus software, residing inside your computer for months or even years, collecting personal information and business secrets.

Prof. Avishai Wool
Credit: Image courtesy of American Friends of Tel Aviv University

Anti-virus companies play a losing game. Casting their nets wide, they catch common, malicious viruses and worms (known to the industry as “malware”), but it may take days before their software updates can prepare your computer for the next attack. By then it could be too late. And some insidious programs prove immune to anti-virus software, residing inside your computer for months or even years, collecting personal information and business secrets.

But Prof. Avishai Wool and his graduate student Ohad Ben-Cohen of Tel Aviv University’s Faculty of Engineering are taking a different approach. They recently unveiled a unique new program calledthe “Korset” to stop malware on Linux, the operating system used by the majority of web and email servers worldwide. Prof. Wool’s technology puts a new spin on Internet security, and once it reaches its full potential it could put anti-virus software companies out of business. The research was presented at the Black Hat Internet security conference in Las Vegas this summer.

Stopping the Virus Before It Starts

Prof. Wool and Ben-Cohen have built an open-source software solution for servers that run on Linux. “We modified the kernel in the system’s operating system so that it monitors and tracks the behavior of the programs installed on it,” says Prof. Wool. Essentially, he says, they have built a model that predicts how software running on a server should work.

If the kernel senses abnormal activity, it stops the program from working before malicious actions occur. “When we see a deviation, we know for sure there’s something bad going on,” Prof. Wool explains.

Prof. Wool also cites the problems with costly anti-virus protection. “Our methods are much more efficient and don’t chew up the computer’s resources,” he says. He adds that his motive is to make the Internet a safer place, not to open a new company to compete with current anti-virus software manufacturers.

Generally speaking, says Prof. Wool, anti-virus companies catch viruses “in the wild” and then send them to isolated computer labs for study. The companies then determine the unique patterns or “signatures” the malware creates. It is this signature that is sent as an anti-virus update to anti-virus subscribers. The problem is that updates take too much time to perfect and then distribute, leaving a wide window of opportunity for computer villains to attack.

“There is an ongoing battle between computer security experts and the phenomenal growth of viruses and network worms flooding the Internet,” he continues. “The fundamental problem with viruses remains unsolved and is getting worse every day.”

The Expert’s Tips on Secure Habits

Even if end-users do everything they can to protect their computers by using anti-virus programs and firewalls, there will always be a period when your computer is vulnerable to attack, says Prof. Wool.

How to stay protected? Never click on links purporting to be from PayPal, your bank or credit card company, he warns. “Most legitimate companies like banks never ask their clients to click on links in an email,” he says. “Be suspicious if a company asks you to do this--access your account through bookmarks you’ve set up, or directly through the company’s homepage.”

Securing New Frontiers

Prof. Wool has built a number of useful technologies applicable to both today’s and tomorrow’s networked world. With his graduate student Danny Nebenzahl, he created a “vaccine” that can protect specific software programs like Microsoft’s Outlook against unseen attacks. The basic research published in 2006 is now making its way into mainstream products.

Prof. Wool is also collaborating with Prof. Jacob Scheuer, investigating the use of fiber optics and lasers to strengthen cryptographic tools used in banking and Internet security.


Story Source:

The above story is based on materials provided by American Friends of Tel Aviv University. Note: Materials may be edited for content and length.


Cite This Page:

American Friends of Tel Aviv University. "Putting A 'Korset' On The Spread Of Computer Viruses: Invention Stays One Step Ahead Of Anti-virus Software." ScienceDaily. ScienceDaily, 15 September 2008. <www.sciencedaily.com/releases/2008/09/080909111037.htm>.
American Friends of Tel Aviv University. (2008, September 15). Putting A 'Korset' On The Spread Of Computer Viruses: Invention Stays One Step Ahead Of Anti-virus Software. ScienceDaily. Retrieved April 21, 2014 from www.sciencedaily.com/releases/2008/09/080909111037.htm
American Friends of Tel Aviv University. "Putting A 'Korset' On The Spread Of Computer Viruses: Invention Stays One Step Ahead Of Anti-virus Software." ScienceDaily. www.sciencedaily.com/releases/2008/09/080909111037.htm (accessed April 21, 2014).

Share This



More Computers & Math News

Monday, April 21, 2014

Featured Research

from universities, journals, and other organizations


Featured Videos

from AP, Reuters, AFP, and other news services

Nintendo Changed Gaming World, but Its Future Uncertain: Upstone

Nintendo Changed Gaming World, but Its Future Uncertain: Upstone

AFP (Apr. 19, 2014) The Nintendo Game Boy celebrates its 25th anniversary Monday and game expert Stephen Upstone says the console can be credited with creating a trend towards handheld gaming devices. Duration: 01:21 Video provided by AFP
Powered by NewsLook.com
Why Did Nike Fire Most Of Its Nike FuelBand Team?

Why Did Nike Fire Most Of Its Nike FuelBand Team?

Newsy (Apr. 19, 2014) Nike fired most of its Digital Sport hardware team, the group behind Nike's FuelBand device. Could Apple or an overcrowded market be behind layoffs? Video provided by Newsy
Powered by NewsLook.com
Nearly Two Weeks On, The Internet Copes With Heartbleed

Nearly Two Weeks On, The Internet Copes With Heartbleed

Newsy (Apr. 19, 2014) The Internet is taking important steps in patching the vulnerabilities Heartbleed highlighted, but those preventive measures carry their own costs. Video provided by Newsy
Powered by NewsLook.com
Facebook To Share Nearby Friends Data With Advertisers

Facebook To Share Nearby Friends Data With Advertisers

Newsy (Apr. 19, 2014) A Facebook spokesperson has confirmed the company will use GPS data from the new Nearby Friends feature for advertising sometime in the future. Video provided by Newsy
Powered by NewsLook.com

Search ScienceDaily

Number of stories in archives: 140,361

Find with keyword(s):
Enter a keyword or phrase to search ScienceDaily for related topics and research stories.

Save/Print:
Share:

Breaking News:
from the past week

In Other News

... from NewsDaily.com

Science News

Health News

Environment News

Technology News



Save/Print:
Share:

Free Subscriptions


Get the latest science news with ScienceDaily's free email newsletters, updated daily and weekly. Or view hourly updated newsfeeds in your RSS reader:

Get Social & Mobile


Keep up to date with the latest news from ScienceDaily via social networks and mobile apps:

Have Feedback?


Tell us what you think of ScienceDaily -- we welcome both positive and negative comments. Have any problems using the site? Questions?
Mobile: iPhone Android Web
Follow: Facebook Twitter Google+
Subscribe: RSS Feeds Email Newsletters
Latest Headlines Health & Medicine Mind & Brain Space & Time Matter & Energy Computers & Math Plants & Animals Earth & Climate Fossils & Ruins