Sting: An End-to-End Self-Healing System for Defending against Internet Worms

  • David Brumley
  • James Newsome
  • Dawn Song
Conference paper

DOI: 10.1007/978-0-387-44599-1_7

Part of the Advances in Information Security book series (ADIS, volume 27)
Cite this paper as:
Brumley D., Newsome J., Song D. (2007) Sting: An End-to-End Self-Healing System for Defending against Internet Worms. In: Christodorescu M., Jha S., Maughan D., Song D., Wang C. (eds) Malware Detection. Advances in Information Security, vol 27. Springer, Boston, MA

Abstract

We increasingly rely on highly available systems in all areas of society, from the economy, to military, to the government. Unfortunately, much software, including critical applications, contains vulnerabilities unknown at the time of deployment, with memory-overwrite vulnerabilities (such as buffer overflow and format string vulnerabilities) accounting for more than 60% of total vulnerabilities [10]. These vulnerabilities, when exploited, can cause devastating effects, such as self-propagating worm attacks which can compromise millions of vulnerable hosts within a matter of minutes or even seconds [32],[61], and cause millions of dollars of damage [30]. Therefore, we need to develop effective mechanisms to protect vulnerable hosts from being compromised and allow them to continue providing critical services, even under aggressively spreading attacks on previously unknown vulnerabilities.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer Science+Business Media, LLC. 2007

Authors and Affiliations

  • David Brumley
    • 1
  • James Newsome
    • 1
  • Dawn Song
    • 1
  1. 1.Carnegie Mellon UniversityPittsburghUSA

Personalised recommendations