Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Nematodes: The Making of Beneficial Network Worms



 By: Ryan Naraine
2005-10-05
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


  Table of Contents:
  1. Nematodes: The Making of Beneficial Network Worms
  2. ' Nematodes'

Rate This Article:
Poor Best
Nematodes: The Making of Beneficial Network Worms
( Page 1 of 2 )

A high-profile security researcher is pushing ahead with a new framework for creating "controlled worms" that can be used for beneficial purposes.

Convinced that businesses will use nonmalicious worms to cut down on network security costs, a high-profile security researcher is pushing ahead with a new framework for creating a "controlled worm" that can be used for beneficial purposes.

Dave Aitel, vulnerability researcher at New York-based Immunity Inc., unveiled a research-level demo of the "Nematode" framework at the Hack In The Box confab in Kuala Lumpur, Malaysia, insisting that good worms will become an important part of an organizations security strategy.

"Were trying to change the way people think," Aitel said in an interview with Ziff Davis Internet News. "We dont want people to think this is impossible. Its entirely possible to create and use beneficial worms and its something businesses will be deploying in the future."

For years, security experts have debated the concept of using good worms to seek and destroy malicious worms. Some believe that its time to use the worms tactics against them and build good worms that fix problems but the chaos and confusion associated with self-propelled replicating programs have left others unconvinced.

Resource Library:

Aitel is among those who believe it is "inevitable" that worm technology can significantly reduce the cost of disinfecting and maintaining a corporate network.

Read more here about security experts decrying good worms.

"We already have a proof-of-concept that can take a very simple exploit, go through a few steps and, in a matter of minutes, create a working nematode," Aitel said.

He took the name for the concept from the pointy-ended worm used to control pests in crops. "We can generate a nematode any way we want. You can make one that strictly controls, programmatically, what the worm does," Aitel explains.

Aitel, who did a six-year stint as a computer scientist at the NSA (National Security Agency) before moving on to work as a code-breaker for research outfit @Stake Inc., is adamant that nematodes can provide the answer for lowering security costs.

He sees a world where "strictly controlled" nematodes are used by ISPs, government organizations and large companies to show significant cost savings.

During his Hack In The Box presentation, Aitel outlines the reasons for creating nematodes and displayed strict protocols that can be used to control the beneficial worms.

Read more here about support for the concept of beneficial worms.

He said nematodes can be automatically created from available vulnerability information and even showed off a new programming language to create the worms.

Next Page: Potential Problems





  Reader Comments: Nematodes: The Making of Beneficial Network Worms
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Network Security & Hardware Articles          >>> More By Ryan Naraine
 


x}v㶲s{̎Sj^-ڱ-oKNgfERc&)ļ5?18UxӅ|IzNږp)BP(#{A \:2H~<4<λwuL9Y#C rD3,wU E]UeFN3rMpDλ"x!H/Ta@]21$h(tL|OkEs _ľ^alM Lh:qF٨XC0A74Sӱag9ˡ(zAwfil#5뮮RzZHWyxx(<MI mbCG${@BKkVQWB-")u(!ZZzo AKQza"Q}?_L-~k~>EF,KAV衂ĠʠW:+֟㽩jq{zrrq۹:i?u=$#th:(tfAZڪﯭy\? omz 7<,V+r'6PEQ-Ir޿ =M%%XpؿG!H,聞M|`nmdʰ(|Orn9C;L}ƊNmPuRBT_3;j\ }0[#RDp &\ =?&>MilYs7*RiK2Xʅ U E?(Ie,A[!f}N9}%)IFʋm<<7UI70i3 ޺zN ufo7AC !106rDRm|*:l d (4 P<xwܛ@[S_%]ѽ[c( U4/jO`^@Z3.ppZi?0@]q3߀ o ќVUR*L36 p0yzOx3 R]MPԤvBB !\60 HȖ(׋r)t׀ry . g r\B=7^ ˥>*-4qR% 53TiNjL=?hj3evG,[Ez9rU .i /6JԍyRI+AFҚL̈́-Gn]^yfl`a DMEw\,O)A<~n8  t X`5ÂUsF &/|, `0'XlͩiÆqbj_a!teb|\&6=U]2 @TXU[t;ıa|d*.kpn>xBOMnaDpI.3Ҫr|;Ꭴm @>zS΅z8g 92!M5mb$ӠCf)OrJ7Rai[a")x K;@ x@#3Q_膉riz6<;.`CϱȧKs='5kclr gK֣ZXp܉881` E@֨P䚜8L->mb@k/ı`M5ߛZ%75j/nKi{y_ZBB|zn X>0LاTlb82- 7:ğy;ڈysQ_)KEYQ?O~2;"nE PÝ6mJr'æ+jIr]ieriڳPxPSXSshxY8'o+GaWA7.# 7{o`"12t3u&/zt92i4Q*JR%A)qL] iq쫔ÙP$T`m6(ңpF,`^\|P> BKg"VcEsÖYAÖ,W۔Ђ ;и|XT=?c [&3Ӟ=Qc*2~3@~6ԪbV= "j$WU\߬ ,3f)'@S$f|`g4'w~-}g``ݠ?UM+\sj>#]ܧV`SaJ]TFh\eHX]M;H@Ge\Nb_!!4P85fr  -?>_$o'?T!IC8D pLƨ'|<.A1pE<3l٤S,H-1R2"'@n5Ie[[;3^V OP't{4 ؃L26(5 ÿCvλWiYS)%Vt u| _sM<-צkH04 5~j !KՃZQ߯Y > ): LTPJg?ZCA9Sd}t@b%Rq݌6"vzڀVJhQ_/Qi}gnLL߼ ?~דLoǖ3 ם~xȴh( ֠|o D*U>R &q3ꗎQ_PˊRN˂S3Q97 pz.{5 3PXfS~kpbQ\AX#<>R+bJb֍G7~ z&ZiЁbN@w cO ZQ|Z#7:j|>rsO$Nn[URXRB/ \uO 9^u tYv_+{poF79 yK+[Y>)Ӕ7O:3dR| ?PF 4ե[溋*<̬9liIDv/iIJPSVae~RuQev )5A)֊\{ԡ}2gcV3H4^:&&2o榒fu5toTv3gT}ć) sgCRRHwضZVrvĿjc"qC@a HR{D "Y@br(Z"UU+|2(Rl"!C.c'Dֳq<9NvϐT]F\n\c+4W'\&WF@"'!rM+7 3bb\&DW`7y1^?*5)WOLп" }MX_UvzFd# ;? w!)*{N[χxGsU_w{~{uH(DXy9;GqZ}cq2 }U\9$:]g7ݏW'Bufwi\[hTD 1N^]R~̮׭ՙpцi~Aqy!3G@*G~{\n:WK݋ W'u ߽<ZC䄬W!z/ڭf L k3ڤ8)R/hdqj=န5)/{sҾaĂ ӌ$"^Z ?N3$nX *V_;ᄞZïoka~ I5cZg>$91@%+JFtzѕ`{my$ |d _RJpI$Q#=)#[xI{bDw"G0ί[J㷒o˘IGD}_q-5kNz4&u\1[5ntDdLprl_tz`EarfzIi%/Cqc"TS(LL]7RB9k)-tOӆOlg\BYaR;Oa2ބq?Ik(vۺZN SJ)Ҥ`Bf˄f{e9)a5R"LAYOA/%M$f;kBڕzs iMN6mn3Ϭ+K:g[Hë ԑnI+4ĉ/EiA0;ǭp!G7At|'$hw:Br7`|xr'jxxj}qUyA>( ;hgWN僃@S fO:V`7M{?I8Gu*bl_@7n`1B?nw`Yv$5m]꜌DUyzv`h) .S'mw-;xoCƆ_ wBZ ([e氌Sh@ÿb<,Xug61CN'~>A 6>( I ^_vh}ߋ|Tjg 9V+rDh7{͆ؓ̆noO)/vҽ{o;ᧅsE4rƐgvdlL\pARetn(rQs UOr;ndo$QD>7KPDʛ%i,KfFϑ=-Tvo{Tcs74^!ǚTo)72]wm߀Bqm25V%2/r\ 5"nx(Z^8|ӫg hv?o?vVȿ5LDhg< ֮zt߳=vÏ9",45ȥEo<;nNeOa|#hga3>ƙ x < v4.=߮(A~E<v4*){7Y̛F~f8v  ֍+ 7V9eoQFD5|} zx|Svz7oƜx+n VKo_35p.$ޅ?@՞ MȽz"nmg(yt`b{y' 215mإY=^O ˪)@q LT ^ul?$=udFӣ~fhP+EqGҗ gsgFRdqi8=SoEZч]4څ?i D=~D@5O\Cwa5T71VmB.ѽR :jϭ*8zzmj & +J>/@H倇& ϩ(a<ډs9HZ ^X 9(At dI ɦ`bH X+i@z)lz.{嘇c/Lߋ X#PyRePzHI,Tj0(_BgAASM w ;BYn!^PhcRPq ̅9с)+ +]1S(^\ڑTC[fi1rZgEc<_IF*INb"x& %sRU.!x=eWD* 304jEOJ5(,7Sd)92Xd< >'a/huN.eǀbU D\pqX^kpa*J+*}jrgM7-=> bk>E& @?g ?r#v&ԡJ%E dbaPPQT>$T~QinѶ ՟Wƃ Lo R)*"gN>4E8,L ^G2@B8'G|U. ˂RK^m TNi3 sxSOe 5;h/TKe\^vQM5 (TGb-!%~""pd# 0 nXBs3+C;Aa*5,RZj^c0B?|<7777o-W$Yz6Wa]w쑉ĚЁ} =`4LAv2s̅{hK82s|$+K6Z9dӁ}ri9$@:uˮGRlk/l_e׃!*o@3--~6 c[w#1XKya=B둨a>zr1<5E6W~J o4ӏ>=I`j c+S@f պTQqaHcj 0gк" ƟD)o^ iW!1vLXНBohfq^ eݖO&Gq` B|E-P3|v )լh#AO¸!ڶg'V=Z|EAP{Mc "A$H"I ~*{t-۳0|A iͭL-1>>w*~`L}7}c{`Uz61U ZL KF:7Fxc5F퓨5FxkcW=lRC|: qC~}=́E'x,I*,PXZ}L"1(J"t9m<|x Ϫ.ien̿̿̿̿_X+W/jgF@ \אrbZ,P0!@)~CpΊBLD^CyٷUYaY%/03 K$ N3Gn툚rޢjHL_UuŒߘd {5kx{[cO{j>0K#ONg/Fu-D1«sZ33϶n@Kzcw>:N+EgsBL;#f-}أao:%ĶfC_O`aԀ s ㇱQO@_ߔo8IJ(ˌNxOAB7X,^;*&s`Ubt *霰4Ե0>Hx;"w8\sgGwfH77 z;jQ)(9rOj^1 tφE{QOqUK^53._ģ/Gonizkcn 9٦ ᅐEJS"ȹ}lZAձ&` l*VgbYQF\S]&QVk Kri.ZBɬd#1}%ļ*}zNZTceډ5V(R)_k WSʚy, ,xj$R )1. э+lMwL}W& WJ{#ؙ[ _dE@jYb"$_jM 6s-r= D׻w O/P4oHC[T<1lzjw!jzg][x%K|lRolՊ[NiNӡP7 X ךG5* I՝!~^cڃՏMo8. 24'٫Q4Fզl1i"LuM|{y%o#?$&y5L~n'zB|oN] T;>NE04![<:;Dׁŵs$DPS\>'q'H!}焧I YP2Q0>8h){e~r,8ۉ^D",pg\e8 ! eT,1we>i~R M#}%P((x%}8G%Œf KBNDJC@ a)q/1 8" 9CNE KflǛacNͦgyѴ7B*]3N _(Uҁs\: G ]NQx}[- (.o"UZI3@diî'=ȍB.Ks̖z4TO`G<{ԑ8nx#/RVIz֜OVa *zeIOirϟ}K[\Q`m2ɿT vRۡ7Ǫchk鱚Ǿ38,mSO*ѕ!E {{n/1~ۈ۫k:vә!'yَU+57n͌Mt)6A96Z`9RmsΨ 5r>8.>LqMG[jՍYJva~XEOb1q<sVmS鰫ch@$=LK +`\_ *Q{ZR‰B0V/_ŌV\>dF5mFf,OL~D>JP3Scl$JYZmI&{|>+zn#+JMGZەۉp g'17ݤj¨`*ؘ‹yp(WR#=~0hpt9ڀkcjEl~0hTLv <['{Ԥ7?IRG $y%-bd"$@_پmFzhu.Uw7=dP^Hz}ڎi-9]d||ɜa't IEey.d}UzҧOx%!&[uu}4 l q\Q-vr)GdzwZ}UO:ƈ\e g@6L-;aIAFY#h|G#ws3MG' 4aAz\N~@0 <#Dt/pJf芘\'G!o kؚ] 'k/P5 Y GΎ(Ss3B@>T?U_% z (E, D "}A=Aa~H´!2P/MfJ>v3 M`:N# .bE.wS4&x*0Cl855{ntdˡQ*I|:+M U߇3ɏ>CKݜ(8*+Z9It.CK/HFzFs[Iw'拈cd\c RMJ0%Tk"[38LXˉҟ7 |wV7+_Xıgz+i+ 9Aɑ}*Y>;O|TB'}7ĉgrڽ!-rznǣM^E/)a[+N|Uw'ןO;WU?<5=X0[yl21^ Β^9j]23p*ec&͹daEh,Y.24dG_1}Tu}=E6Rz} झ O?9e#\5;;'f$#g:WNF?2?C">vˌ_f_f^fsKe/>/32>G2 ?eCyF? {1W?Wsw1]7]? ͐/@q 3dO诟A_ >f'1OO۬| o3ڿ͠Z'2uS.ryA/ ȋU৬|B]f@~sx^P[qЙqFa֢@)zXkSMۧ4|eR㴠AǛN3M !훫u֦l(O:28 ߜ:RaN;w_a%ɠ1zΉ%1,=D|t5RwÅzOA|3v1h>,H$ΆB(% J\g1aڴ`p}aXC'"ʒ($`r(X"KU|((RlF!Eviث,5C=bhǨ[ɖFWw0 E cW.ce"Hkf" faNگJ!Ď`}SwPsgqr=u iNK"?Ç:Vɤ[TlZ{A[Rg軥P:fG ;Sko|q0X9Kh `zT}z8VA!ʰx'7c_=F.U7 =w>0*pl Ajl8ӕsX>Qg nqyk5Y 9c֏%>֔Y¥Md.^Eߕ I:`* >D亂mK_^0={v]@p74=|jeO"|ͶO/ФP_CD);1;P|+ a?4ǞÔ0؀%AfH*HĞ =RoT˹,Hb z"ёwl#!{o+f{VX"mu;הdeFӹ&=ǚqh?؛ŷ&L6G]4 (TU'f\gHa.x<a H^0}F$W_5 | fe&b5gQlVxSHN{r\鱽׭0\"gz\;+v &B,OJ\Ob/ P -|z`ã8}c4XO?ekA/?tIS۱x&%ՍmY dz.yckhE*6\z|$4| '9"ımm$~FOh wg 4AmN>7T+ "K j;;5m8Te]bjж=֍l2-1K´o^; qVg f3H?ƛθ5 ߀ }l:Wݜ얯s/o| 8lo.ӄl4=l}π hsCQ% =՛+Hʍt/AKt2tV4 @FODP7"6ZƏYF Ta+e;6K,Pϰ]3Ma`"#!*V x9Oߘºyoex peY" #Zam> /(:NOe3{Z %^^H›*z|XVb 04*059'ㆣWVxx uu+y!0 (ɟ>zTq޶75Pںi#UT-_ lˢM 9߶q߼,ۿyFXS#5gâ@XVO=_1xF| /XW}qx}r2i^9FjB~eaGZͼ*;҆g'tQ\FC$#0P/y암vlH9m=GPh1'R9(Dt3MaF*)AuҰܷ- xsjk29ɓKq4QuࠂO6.VsByej ջR#z.iA C1XqO>m @ۄ6y8L] l&j4bxt1yLBL IQ:;l4ݐѢZQ9;'R:43h;[3\TLCI6c?tft @ìō]A"!`\04YvO] _AXG5J]mJQ*E.O2.놥y}|gQ5UP!ޑb/xČGC8;,!~J<+Þ"f}@gP$#L/~ NP;#r*;QwyVx҉y3(Ғx=PEJ}&3Y}jZkvp6*ǸyXJ0Jwx|p,VK|FdLu &K&tή7m;^\&Gg?*%-|#T8JLRO<>Mi%ܠ [Lvw:03BI6[[nAki`ڪ5S@ tNКr2U-z'?6BTFtG yPPph, Bgt&}2s1R!#=t-H9ȃ$|'V"Ղ KK٥ȁ\1A%2>oϦCVQrlf,_yoDiB tǞD ^?_M~-.OK&Pۺ>(kSXn ݤ/KߨcPBEWv#.!5b 뇴GJ vuh9E_ckЛ U><}N1G*l>~?1ͱ`{w2 դ;Z Llc.(ա.n@@d Z ܅ \9$BGDe\$qMX,,e7 X0D隼aRjBw⾥I;L~H|cgw y44.*3%R/IuAn;P|bj`/xhHaUz!`_ >lTpAYN՟yU>o5|.&Vw r~m[sqL@R 1/R1\Uf|ix "5m/vM軤HEIbtoIgNXc֑߭EiKqy&֟17|V}ć );rǕӏlgYFމ n>6zs rg<_/OZ$#$UgϊǤTa_t"_RRXV*IDS: /n<إp䑠8p(Þ9[oVUhڎM׿#jq(Q)oR&,]> }`rׂg ᭅa|^a2visShGhaaz\}i$-D&6v"{ѽ9L);NZ?t?^aA tnA0/ӽ9iAPVhI,YZ^on\0 9,_`@RQ%$6o5aZ3I@*ՊamLN=Wan6}(HRdbII/䵅3ԩȌcDc.ƂN7?䊎HCs nra/*ޯ?