DOCSLIB.ORG

CIS 381: Social & Ethical Issues of Computing

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
CIS 381: Social & Ethical Issues of Computing CIS 381: Social & Ethical Issues of Computing Security Dr. David Koop D. Koop, CIS 381, Spring 2019 Privacy • Privacy related to notion of access • Access - Physical proximity to a person - Knowledge about a person • Privacy is a "zone of inaccessibility" • Privacy violations are an affront to human dignity • Too much individual privacy can harm society • Where to draw the line? [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !2 Solove’s Taxonomy of Privacy • Information collection: Activities that gather personal information • Information processing: Activities that store, manipulate, and use personal information that has been collected • Information dissemination: Activities that spread personal information • Invasion: Activities that intrude upon a person’s daily life, interrupt someone’s solitude, or interfere with decision-making [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !3 Data Mining by the Government • Data mining: Process of searching through one or more databases looking for patterns or relationships among the data • Examples: - IRS Audits: match information from different sources and find returns that appear likely to have errors resulting in underpayment - Syndromic Surveillance Systems: search for patterns indicating the outbreak of an epidemic or bioterrorism - NSA Telecommunications Records Database: analyze calling patterns to detect terrorist networks - Predictive Profiling D. Koop, CIS 381, Spring 2019 !4 Code of Fair Information Practices • "Bill of Rights for the Information Age" (1970s) • Code - No secret databases - People should have access to personal information in databases - Organizations cannot change how information is used without consent - People should be able to correct or amend records - Database owners, users responsible for reliability of data and preventing misuse [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !5 Information Dissemination • Legislation to restrict information dissemination - Family Education Rights and Privacy Act - Video Privacy Protection Act - Health Insurance Portability and Accountability Act • Examples of information dissemination - Freedom of Information Act - Toll booth records used in court D. Koop, CIS 381, Spring 2019 !6 Invasion • Government actions to prevent invasion - Do Not Call Registry: shielding people from telemarketers judged to be greater than harm caused by limiting telephone advertising - CALM Act: ensure television commercials are played at same volume as programs they are interrupting • Invasive government actions - Requiring identification for pseudoephedrine purchases • used to make meth • require identification/signature and limit amount - Advanced Imaging Technology scanners at airports • initially created revealing images • TSA develops new software to show generic outlines [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !7 Term Paper Topic Selection • Topics have been assigned • 4-5 people per group • Term papers are individual • Topic presentations are done in groups, but each person should speak for 3-4 minutes • As a group, rank your preferred presentation days - April 17, April 19, April 22, April 24, April 29, May 1 • Individual term papers are due May 6 (assigned exam date) • Need to evaluate issues using ethical frameworks • Groups can choose to examine different issues related to a topic or examine a similar issue using different frameworks D. Koop, CIS 381, Spring 2019 !8 Why is Security Important? • Computers getting faster and less expensive • Utility of networked computers increasing - Shopping and banking - Managing personal information - Controlling industrial processes • Increasing use of computers → growing importance of computer security [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !9 Hackers, Past and Present • Original meaning of hacker: explorer, risk taker, system innovator (e.g. MIT’s Tech Model Railroad Club in 1950s) • Change in meaning from electronics to computers and networks • WarGames (1983): Hacking military supercomputer • Modern meaning of hacker: someone who gains unauthorized access to computers and computer networks [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !10 Obtaining Login Names & Passwords • Guessing • Eavesdropping: watching keystrokes • Dumpster diving: discarded manuals sometimes have passwords • Social engineering: manipulating persons to gain access to info • Brute-force searches • Dictionary attacks [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !11 Password Advice • Do not use short passwords • Do not rely solely on words from the dictionary • Do not rely on substituting numbers for letters • Do not reuse passwords • Give ridiculous answers to security questions • Enable two-factor authentication if available • Have password recoveries sent to a secure email address [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !12 Computer Fraud and Abuse Act • Criminalizes wide variety of hacker-related activities - Transmitting code that damages a computer - Accessing any Internet-connected computer without authorization - Transmitting classified government information - Trafficking in computer passwords - Computer fraud - Computer extortion • Maximum penalty: 20 years in prison and $250,000 fine [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !13 Sidejacking • Sidejacking: hijacking an open Web session by capturing a user’s cookie • Sidejacking possible on unencrypted wireless networks because many sites send cookies “in the clear” • Internet security community complained about sidejacking vulnerability for years, but ecommerce sites did not change practices [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !14 Case Study: Firesheep • October 2010: Eric Butler released Firesheep extension to Firefox browser • Firesheep made it possible for ordinary computer users to easily sidejack Web sessions • More than 500,000 downloads in first week • Attracted great deal of media attention • Early 2011: Facebook and Twitter announced options to use their sites securely • Evaluate: Was this a good action? [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !15 Act Utilitarian Analysis • Release of Firesheep led media to focus on security problem • Benefits were high: a few months later Facebook and Twitter made their sites more secure • Harms were minimal: no evidence that release of Firesheep caused big increase in identity theft or malicious pranks • Conclusion: Release of Firesheep was good [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !16 Virtue Ethics Analysis • By releasing Firesheep, Butler helped public understand lack of security on unencrypted wireless networks • Butler’s statements characteristic of someone interested in protecting privacy • Butler demonstrated courage by taking responsibility for the program • Butler demonstrated benevolence by making program freely available • His actions and statements were characteristic of someone interested in the public good [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !17 Kantian Analysis • Accessing someone else’s user account is an invasion of their privacy and is wrong • Butler provided a tool that made it much simpler for people to do something that is wrong, so he has some moral accountability for their misdeeds • Butler was willing to tolerate short-term increase in privacy violations in hope that media pressure would force Web retailers to add security • He treated victims of Firesheep as a means to his end • It was wrong for Butler to release Firesheep [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !18 Malware • Viruses • Worms • Cross-Site Scripting • Drive-by Downloads • Trojan Horses • Rootkits • Spyware & Adware • Botnets [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !19 Viruses • Virus: Piece of self-replicating code embedded within another program (host) • Viruses associated with program files - Hard disks, floppy disks, CD- ROMS - Email attachments • How viruses spread - Diskettes or CDs - Email - Files downloaded from Internet [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !20 How an Email Virus Spreads [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !21 Antivirus Software Packages • Allow computer users to detect and destroy viruses • Must be kept up-to-date to be most effective • Many people do not keep their antivirus software packages up-to- date • Consumers need to beware of fake antivirus applications [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !22 Worm • Self-contained program • Spreads through a computer network • Exploits security holes in networked computers [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !23 How a Worm Spreads 7.3 Malware 329 W W W W W [M. J. Quinn] Figure 7.4 A worm spreads to other computers by exploiting security holes in computer D. Koop, CIS 381, Spring 2019 !24 networks. punk: Outlaws and Hackers on the Computer Frontier, written by Katie Hafner and John Markoff [25]. BACKGROUND OF ROBERT TAPPAN MORRIS JR. Robert Tappan Morris Jr. began learning about the Unix operating system when he was still in junior high school. His father was a computer security researcher at Bell Labs, and young Morris was given an account on a Bell Labs computer that he could access from a teletype at home. It didn’t take him long to discover security holes in Unix. In a 1982 interview with Gina Kolata, a writer for Smithsonian magazine, Morris admitted he had broken into networked computers and read other people’s email. “I never told myself that there was nothing wrong with what I was doing,” he said, but he acknowledged that he found breaking into systems challenging and exciting, and he admitted that he continued to do it. As an undergraduate at Harvard, Morris majored in computer science. He
Load more

Recommended publications
  • (IN)SECURE Magazine Contacts
    It’s February and the perfect time for another issue of (IN)SECURE. This time around we bring you the opinions of some of the most important people in the anti-malware industry, a fresh outlook on social engineering, fraud mitigation, security visualization, insider threat and much more. We’ll be attending InfosecWorld in Orlando, Black Hat in Amsterdam and the RSA Conference in San Francisco. In case you want to show us your products or just grab a drink do get in touch. Expect coverage from these events in the April issue. I’m happy to report that since issue 14 was released we’ve had many new subscribers and that clearly means that we’re headed in the right direction. We’re always on the lookout for new material so if you’d like to present yourself to a large audience drop me an e-mail. Mirko Zorz Chief Editor Visit the magazine website at www.insecuremag.com (IN)SECURE Magazine contacts Feedback and contributions: Mirko Zorz, Chief Editor - [email protected] Marketing: Berislav Kucan, Director of Marketing - [email protected] Distribution (IN)SECURE Magazine can be freely distributed in the form of the original, non modified PDF document. Distribution of modified versions of (IN)SECURE Magazine content is prohibited without the explicit permission from the editor. Copyright HNS Consulting Ltd. 2008. www.insecuremag.com Qualys releases QualysGuard PCI 2.0 Qualys announced the availability of QualysGuard PCI 2.0, the second generation of its On Demand PCI Platform. It dramatically streamlines the PCI compliance process and adds new capabilities for large corporations to facilitate PCI compliance on a global scale.
    [Show full text]
  • It Flash Jagan Institute of Management Studies
    Jims It Flash Jagan Institute of Management Studies August 2014 IT FLASH Volume 8 Issue 6 Year 2014 Viruses Here are my top 5 Worms, Trojans, or Viruses. 1. Melissa A macro virus named after a Miami stripper, was so effective in 1999 that the tidal wave of email traffic it gen- erated caused the likes of Intel and Microsoft to shut down their email servers. The virus contained a Word document labeled List.DOC as an attachment to an email allowing access to porn sites. 2. The Anna Kournikova Virusq qq This computer virus was attributed to a Dutch programmer Jan de Wit on February 11, 2001. The virus was designed to trick a recipient into opening a message by suggesting that it contained a picture of the lovely Anna Kournikova, instead the recipient triggered a malicious program. 3. MyDoom MyDoom began appearing in inboxes in 2004 and soon became the fastest spreading worm ever to hit the web, exceeding previous records set by the Sobig worm and ILOVEYOU. A side note, though I knew people affect- ed by Sobig and ILOVEYOU, I did not see either of these in the wild. The reason that MyDoom was effective was that the recipient would receive an email warning of delivery fail- ure – a message we have all seen at one time or another. The message prompted the recipient to investigate thus triggering the worm. 4. Sasser & Netsky Easily one of the most famous and prolific variants of computer worms, famous for effectiveness and the fact that it was authored by an 18 year-old German, Sven Jaschan, who confessed to having written these and other worms.
    [Show full text]
  • Hackers, Users, Information Security I.P.L. Png, Candy Q. Tang, Qiu
    Workshop on the Economics of Information Security (WEIS 2006) Hackers, Users, Information Security I.P.L. Png, Candy Q. Tang, Qiu-Hong Wang Revised, May 2006 Abstract We analyze the strategic interactions among end-users and between end-users and a hacker. We show that security efforts by end users are strategic substitutes. This explains the inertia among end-users in taking precautions even in the face of grave potential consequences. Next, we analyze the direct and indirect effects of changes in user fixing cost and the rate of enforcement against hacking. For instance, a reduction in user fixing cost would directly lead users to increase fixing effort. However, that would make them less attractive targets, and so induce less hacking, and hence, indirectly lead users to reduce fixing. National University of Singapore. Corresponding author: Ivan Png, tel: +65 6516-6807; http://www.comp.nus.edu.sg/~ipng/. We thank Anindya Ghose and the anonymous referees for very helpful advice and suggestions. © 2006, Png, Tang, and Wang 1 Workshop on the Economics of Information Security (WEIS 2006) 1. Introduction Information security is a critical issue of both national policy and business operations (Whitman 2003). For instance, in May 2004, Sven Jaschan created the Sasser worm to exploit a vulnerability in the Windows 2000 and XP operating systems. The Sasser worm and its variants caused hundreds of thousands of PCs to crash (ZDnet 2005). In August 2003, the Microsoft Blaster worm exploited a vulnerability in Windows 2000 and XP to infect hundreds of thousands of computers, from which it launched a “denial of service” attack on the Microsoft Windows Update server (Register 2003).
    [Show full text]
  • Compliments of Edited by Linda Mccarthy and Denise Weldon-Siviy
    Compliments of Edited by Linda McCarthy and Denise Weldon-Siviy page press Smart Books for Smart People® The author and publisher have taken care in the preparation of this book, but make no expressed or implied warranty of any kind and assume no responsibility for errors or omissions. No liability is assumed for incidental or consequential damages in connection with or arising out of the use of the information or programs contained herein. All trademarks are the property of their respective owners. Publisher: Linda McCarthy Editor in Chief: Denise Weldon-Siviy Managing Editor: Linda McCarthy Cover designer: Alan Clements Cover artist: Nina Matsumoto Interior artist: Heather Dixon Web design: Eric Tindall and Ngenworks Indexer: Joy Dean Lee Interior design and composition: Kim Scott, Bumpy Design Content distribution: Keith Watson The publisher offers printed discounts on this book when ordered in quantity for bulk purchases, or special sales, which may include electronic versions and/or custom covers and content particular to your business, training, goals, marketing focus, and branding interests. For more information, please contact: U.S. Corporate and Education Sales (510) 220-8865 Except where otherwise noted, content in this publication is licensed under the Creative Commons Attribution-Noncommercial-No Derivative Works 3.0 United States License, available at http://creativecommons.org/licenses/by-sa/3.0/us/legalcode. ISBN 978-0-615-37366-9 Library of Congress Cataloging-in-publication Data McCarthy, Linda Own your space : keep yourself and your stuff safe online / Linda McCarthy. ISBN 978-0-615-37366-9 (electronic) 1. Computer security. 2. Computers and children.
    [Show full text]
  • Part 2 of Examples of Malicious Computer Programs
    www.rbs2.com/cvirus2.pdf 9 Jul 2005 Page 1 of 25 Examples of Malicious Computer Programs Part 2 Copyright 2004-2005 by Ronald B. Standler Keywords address, addresses, arrest, attachment, attack, attacks, author, authors, Bagle, Blaster, case, cases, code, computer, computers, consequences, conviction, court, crime, criminal, criminals, damage, email, e-mail, Goner, harm, harms, history, infect, infected, injury, injuries, internet, Jaschan, law, laws, legal, mail, malicious, Microsoft, MyDoom, Netsky, Parson, Pechman, perpetrator, program, programs, propagate, propagates, propagation, punish, punishment, restitution, Sasser, Slammer, SoBig, software, victim, victims, virus, viruses, worm, worms Table of Contents Introduction . 2 Goner Worm . 4 Perpetrators of Goner Worm . 4 Slammer . 5 SoBig . 6 Blaster . 8 Perpetrators of Blaster . 8 my comments on Parson’s sentence and restitution . 12 links to U.S. v. Parson documents . 15 Bagle . 16 MyDoom . 19 Netsky . 20 Sasser . 22 Sven Jaschan: author of Netsky and Sasser . 22 Conclusion . 25 www.rbs2.com/cvirus2.pdf 9 Jul 2005 Page 2 of 25 Introduction my previous essay In May 2002, I wrote my first essay about the harm done by malicious computer programs (i.e., computer viruses and computer worms). That essay, which is posted at http://www.rbs2.com/cvirus.htm , discussed fourteen examples of malicious computer programs: 1-5. five early examples, released during the years 1986 to 1994 6. the worm released into the Internet by Robert Tappan Morris in 1988 7. Melissa Virus, released in March 1999 8. ILOVEYOU Worm, released in May 2000 9. Anna Worm, released in February 2001 10. CodeRed, released in July 2001 11.
    [Show full text]
  • Sophos Security Threat Report 2007 Malware
    Security threat report Security threat report 2007 Overview 2006 saw increasingly surreptitious behavior on the part 2006 at a glance of cybercriminals who have found more cunning ways to hide their activities. Copycat websites that only the keenest eye can detect as fake, spam campaigns that mutate in • Malware authors continuing to turn their a matter of seconds in order to evade detection, phishers backs on large-scale attacks in favor of replicating voicemail systems to duplicate the switchboards more focused attacks of legitimate companies – these are just three examples of • Explosive growth of web-based downloaders the rapidly changing nature of the threat. to spy on users The total number of different malware threats protected • Total number of different malware threats against by Sophos was 207,684, with Mytob at the top of protected against – 207,684 the list of malware families. Malware continued to spread • 41,536 new pieces of malware detected by via spam, instant messages, hacked websites, email, and Sophos network shares. In addition, the web became a signifi cant source of threats, being overrun by spyware, adware, • Trojans outnumbering Windows viruses potentially unwanted applications and undesirable websites. and worms 4:1 The motivation, as with all other spreading methods, was • New mass-mailing worm, Stratio had over fi nancial gain, with perpetrators trying to steal confi dential 1000 unique variants in November information or generate income through compromised PCs. • Email containing infected attachments – As malware writers continued to attempt to use malicious down to 1 in 337 code in a covert fashion to evade detection, the trend away • Most spam continuing to be relayed by from infected email that we saw in 2005 persisted.
    [Show full text]
  • 2001-2013: Survey and Analysis of Major Cyberattacks Arxiv
    2001-2013: Survey and Analysis of Major Cyberattacks Tavish Vaidya Georgetown University Abstract Widespread and extensive use of computers and their interconnections in almost all sectors like communications, finance, transportation, military, governance, education, energy etc., they have become attractive targets for adversaries to spy, disrupt or steal information by presses of keystrokes from any part of the world. This paper presents a survey of major cyberattacks from 2001 to 2013 and analyzes these attacks to understand the motivation, targets and technique(s) employed by the attackers. Observed trends in cyberattacks have also been discussed in the paper. 1 Introduction Cyberattacks are computer-to-computer attacks undermining the confidentiality, integrity, and/or availability of computers and/or the information they hold[1]. Computer networks have no geo- graphical borders that need to be crossed for an attacker to steal information. This grants freedom to any attacker to pick his target anywhere in the world and carry out a cyberattack. Therefore, se- curing computer systems is as important as securing physical entities from being attacked. In terms arXiv:1507.06673v2 [cs.CY] 1 Sep 2015 of money, Ponemon Institute[2] estimated the average cost of cyberattacks to be $11.6 million per organization for 2013, which was 26 percent more than 2012. Cyberattacks have not only caused losses in billions of dollars[3], but also had psychological impact on human psyche. As an example, in August 2004, fear of cyberattacks during Olympic games in Greece kept people from attending the Olympic events[4]. With Internet of Things1 al- ready here, securing computer networks and end devices becomes a paramount concern to prevent cyberattacks from disrupting and hijacking them for malicious purposes.
    [Show full text]
  • Malicious Bots : an Inside Look Into the Cyber‑Criminal Underground of the Internet / Ken Dunham and Jim Melnick
    An Inside Look into the Cyber-Criminal Underground of the Internet KEN DUNHAM JIM MELNICK Boca Raton London New York CRC Press is an imprint of the Taylor & Francis Group, an informa business AN AUERBACH BOOK Auerbach Publications Taylor & Francis Group 6000 Broken Sound Parkway NW, Suite 300 Boca Raton, FL 33487-2742 © 2009 by Taylor & Francis Group, LLC Auerbach is an imprint of Taylor & Francis Group, an Informa business No claim to original U.S. Government works Printed in the United States of America on acid-free paper 10 9 8 7 6 5 4 3 2 1 International Standard Book Number-13: 978-1-4200-6903-7 (Hardcover) This book contains information obtained from authentic and highly regarded sources. Reasonable efforts have been made to publish reliable data and information, but the author and publisher can- not assume responsibility for the validity of all materials or the consequences of their use. The authors and publishers have attempted to trace the copyright holders of all material reproduced in this publication and apologize to copyright holders if permission to publish in this form has not been obtained. If any copyright material has not been acknowledged please write and let us know so we may rectify in any future reprint. Except as permitted under U.S. Copyright Law, no part of this book may be reprinted, reproduced, transmitted, or utilized in any form by any electronic, mechanical, or other means, now known or hereafter invented, including photocopying, microfilming, and recording, or in any information storage or retrieval system, without written permission from the publishers.
    [Show full text]
  • Cyber War Attacks and Hacking
    Cyber Attacks, Threats, Espionage and Hacking V. Rajendran Advocate and Cyber Law Consultant Email: [email protected] URL: venkrajen.in +91-44-22473849; +91-9444073849 Cyber Crimes and Digital War • Digital War: what constitutes a digital war • Key features: – No physical barriers – Offender is often anonymous – No physical or other personal contacts – Victims do not even know that they are victimized – Legal process: filing a complaint, investigation etc – Trans-border, international, global reach – International laws and treaties Cyber Terrorism and Cyber Crimes • Cyber Terrorism is a cyber crime against a community, a nation or a group and often with a cause, a belief, a misguided faith • Terrorism and crime are as old as civilisation • Terrorism and acts of treason, Cyber Crime or cyber terrorism, espionage, sedition and attacking a nation’s defence infrastructure have been spoken about in as early as 350 BC in Kautilya’s Arthashastra Critical Infrastructure and Intelligence • The most intelligent system: Human brain • Thinking, interpretation, non-conformance, violation and criminality – all inter-related ! • Crime per se is as old as human being and criminality is as old as human brain and thinking • Use of intelligent systems in the historic past – Use cryptography (Caesar, Alexander, Kautilya) – Use of spying – in politics, governance (Arthashastra) – Information collection – Intelligence gathering – its use, abuse, misuse? Weapons and tools in cyber attacks • As against the ICBM, Surface to Air Missiles, a cyber attack has the key- board, mouse and network with a sound knowledge of technology as its tool and enabler • Stuxnet infamously called the first digital weapon and many other technologies are used • Quite often, what is technology to one, is an instrument of crime and attack for another.
    [Show full text]
  • 10 Worst Computer Viruses of All Time 10 Worst Computer Viruses of All
    10/8/12 HowStuffWorks "Worst Computer Virus 9: ILOVEYOU" 10 Worst Computer Viruses of All Time by Jonathan Strickland Laptop Image Gallery 10 Worst Computer Viruses of All Time Computer viruses can be a nightmare. Some can wipe out the information on a hard drive, tie up traffic on a computer network for hours, turn an innocent machine into a zombie and replicate and send themselves to other computers. If you've never had a machine fall victim to a computer virus, you may wonder what the fuss is about. But the concern is understandable -- according to Consumer Reports, computer viruses helped contribute to $8.5 billion in consumer losses in 2008 [source: MarketWatch]. Computer viruses are just one kind of online threat, but they're arguably the best known of the bunch. There's nothing quite like finding out your computer has a serious virus. Computer viruses have been around for many years. In fact, in 1949, a scientist named John von Neumann theorized @iStockphoto.com/Olaf Loose that a self-replicated program was possible [source: Krebs]. The computer industry wasn't even a decade old, and already someone had figured out how to throw a monkey wrench into the figurative gears. But it took a few decades before programmers known as hackers began to build computer viruses. While some pranksters created virus-like programs for large computer systems, it was really the introduction of the personal computer that brought computer viruses to the public's attention. A doctoral student named Fred Cohen was the first to describe self-replicating programs designed to modify computers as viruses.
    [Show full text]
  • Vysoké Učení Technické V Brně Brno University of Technology
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Digital library of Brno University of Technology VYSOKÉ UČENÍ TECHNICKÉ V BRNĚ BRNO UNIVERSITY OF TECHNOLOGY FAKULTA INFORMAČNÍCH TECHNOLOGIÍ ÚSTAV INFORMAČNÍCH SYSTÉMŮ FACULTY OF INFORMATION TECHNOLOGY DEPARTMENT OF INFORMATION SYSTEMS KRYPTOVIROLOGIE A BUDOUCNOST MALWARE BAKALÁŘSKÁ PRÁCE BACHELOR´S THESIS AUTOR PRÁCE JOSEF PRCHAL AUTHOR BRNO 2007 VYSOKÉ UČENÍ TECHNICKÉ V BRNĚ BRNO UNIVERSITY OF TECHNOLOGY FAKULTA INFORMAČNÍCH TECHNOLOGIÍ ÚSTAV INFORMAČNÍCH SYSTÉMŮ FACULTY OF INFORMATION TECHNOLOGY DEPARTMENT OF INFORMATION SYSTEMS KRYPTOVIROLOGIE A BUDOUCNOST MALWARE CRYPTOVIROLOGY AND FUTURE OF MALWARE BAKALÁŘSKÁ PRÁCE BACHELOR´S THESIS AUTOR PRÁCE JOSEF PRCHAL AUTHOR VEDOUCÍ PRÁCE DANIEL CVRČEK SUPERVISOR BRNO 2007 Abstrakt Malware je spojený s informační technikou. Oboje se ovlivňuje navzájem. Cílem této práce je přiblížit různé typy těchto programů, stručně popsat historii a vývoj. Nastínit hlavní trendy v této oblasti a pokusit se předpovědět, kam bude vývoj směřovat. Klíčová slova A pack with the Devil, bezpečnost, bot, botnet, červ, distribuovaný výpočet, hoax, Hybris, integrace kódu, IRC, kryptovirologie, malware, metamorfismus, Morrisův červ, neuronové sítě, OneHalf, openssl, P2P, peer-to-peer, polymorfismus, Slapper, sociální inženýrství, válka červů, Vecna, vir, virus, Zmist, Zombie Abstract Malware is connected to information technology. They influence each other. The aim of this thesis is to describe various types of this software
    [Show full text]
  • Computersicherheit
    WikiPress Computersicherheit Dieses Buch beschreibt kenntnisreich, wie Computerviren und andere Computersicherheit Bedrohungen des Computers funktionieren und wie man sich vor ih- nen schützen kann. Es informiert über Würmer, Trojaner, die Hoax- und Technik, Methoden, Schutz Massenmails, die regelmäßig das E-Mailfach überquellen lassen, sowie die Phishing-Versuche dreister Abzocker, mit denen versucht wird, den Mail- lesern Passwörter für ihre Konten zu entlocken. Doch auch die Schutz- Aus der freien Enzyklopädie Wikipedia möglichkeiten kommen nicht zu kurz: angefangen von Virenschutzpro- zusammengestellt von grammen über Spamfilter bis hin zu Verschlüsselungsmodellen für die gefahrlose Kommunikation. Michael Diederich Michael Diederich wurde am 11. Mai 1983 in Duisburg geboren und hat seine Schulzeit in Baden-Württemberg mit der fachgebundenen Hoch- schulreife beendet. Nach einem viermonatigem Auslandsaufenthalt stu- diert er jetzt Wirtschaftsinformatik an der Fachhochschule Furtwangen. Er interessiert sich für Sicherheit in Computersystemen, Webapplikatio- nen und ist Mitglied im Chaos Computer Club. WikiPress 7 Veröffentlicht in der Zenodot Verlagsgesellschaft mbH Computersicherheit Technik, Methoden, Schutz Inhalt Aus der freien Enzyklopädie Wikipedia zusammengestellt von Michael Diederich Vorwort . 9 Personal Firewall . 94 WikiPress 7 Dieses Buch . .9 Spyware . 106 Originalausgabe Adware . 107 Veröffentlicht in der Überblick . 11 Dialer. 108 Zenodot Verlagsgesellschaft mbH Computersicherheit. 11 Palladium . 113 Berlin, März 2006 Datenschutz . 14 Next-Generation Secure Die Artikel und Bilder dieses Bandes stammen aus der Wikipedia (http:// Datensicherheit . 20 Computing Base . 114 de.wikipedia.org, Stand 12. Januar 2006) und stehen unter der GNU-Lizenz Trusted Platform Module . 117 für freie Dokumentation. Sie wurden vom WikiPress-Redaktionsteam für Viren, Würmer, Trojaner. 21 Kopierschutz. 120 den Druck aufbereitet und modifiziert. Sie dürfen diese modifizierte Ver- Malware .
    [Show full text]