Microsoft is moving to counter some scathing comments regarding a security paper authored by researchers at its Cambridge, England, facility.
The paper, "Sampling Strategies for Epidemic-Style Information Dissemination," looks at how worms sometimes inefficiently spread their code.
The research explores how a more efficient method could, for example, be used for distributing patches or other software. The advantage would be that patches could be distributed from PC to PC, rather than from a central server.
That method would reduce the load on a server, and patches would be distributed faster. But the patches would have the same qualities as a computer worm, a generally malicious file.
Since a story about the paper appeared on Thursday in the New Scientist magazine, the paper has been roundly assailed.
"This is a stupid idea," wrote Bruce Schneier, a security expert, author and CTO of Mountain View, Calif.-based enterprise security vendor BT Counterpane, on Tuesday, before quoting a passage from the New Scientist story on his blog.
Schneier wrote that the idea of so-called "benevolent worms" comes up every few years.
However, a worm is designed to run without the consent of a user, which doesn't make it a good method of software distribution, Schneier wrote. The worm patching technique could also make the patches hard to uninstall or interrupt during installation, he wrote.
Worms designed to distribute software patches could also be hacked to distribute malicious software, wrote Randy Abrams, director of education for security vendor Eset, in his regular e-mail commentary.
Forced patching is also troublesome since some patches may not be compatible with critical software, Abrams wrote.
"Breaking into computers is a bad idea," Abrams said.
A Microsoft spokesman said on Monday that the New Scientist story is not inaccurate. However, the writer of the story "sexed" up the research paper a bit, particularly with the headline that used the phrase "friendly worms," the spokesman said.
In response to the criticism, Microsoft said it doesn't intend to develop patch worms.
"This was not the primary scenario targeted for this research," according to a statement.
The company also said it will continue to let customers decide how and when they apply security updates.
One of the paper's authors, Milan Vojnovic, said in a statement that there were no plans to incorporate the ideas into Microsoft's products. Efforts to reach Vojnovic for comment were unsuccessful.
This whitepaper explains the terminology and concepts behind Data Replication technologies and establishes some sizing rules through worked examples. Learn the new paradigm in disaster tolerance—protect data anywhere.
Download now »
Server virtualization is a popular option for dealing with mounting datacenter costs. Another equally promising approach is the use of an Application Delivery Controller. Citrix NetScaler provides a low-cost way for organizations to reduce their server count and accrue cost savings from a reduction in space, cooling, power and personnel.
Download now »
The emergence of WLANs has created a new breed of security threats to enterprise networks.
Included in HP ProCurve WLAN solutions is security technology that alleviates threats from WLANs through:
* Monitoring wireless activity inside and out of the enterprise
* Classifying WLAN transmissions into harmful and harmless
* Preventing transmissions that pose a security threat to the enterprise network
* Locating participating devices for physical remediation
Effectively address data protection challenges, implementing solutions that help store and protect business–critical data while cutting costs and improving efficiency and reliability.
Download now »
Sign up to receive Security Resource Alerts
This white paper provides guidance on how to develop a strategic approach to managing and monitoring logs, a key function required for compliance with many regulatory mandates and a critical defense against security threats.
Download now! »
Learn about the processes and technologies that support security information management (SIM) operations, as well as the business case for SIM. The series examines different options for implementing SIM and gives you evaluation criteria for selecting the best option for your organization.
Download now! »
Learn the strategies, actions, and capabilities that Best-in-Class organizations employ and technologies they choose to obtain superior performance against various security performance metrics. This report provides guidelines for identifying which security solutions to consume as a MSS and defines best practices for choosing and managing MSSPs.
Download now! »
1 Recommendation
