Print friendly
E-mail story
Tip Us Off
Comments
Share Article
Facebook
Twitter
Google+1
del.icio.us.
Digg!
Yahoo! Buzz
Diigo
google
newsvine
reddit
technorati
Yahoo!
MyspaceIn an effort to quash something silent but violent, UCSB researchers — along with the help of a variety of law enforcement agencies including the FBI — are using a $6.2 million grant they recently received from the U.S. Army Research Office to develop a new, state-of-the-art computer defense system.
Last year, backed by a grant from the National Science Foundation, researchers from UCSB’s Computer Security Group — including computer science professors Richard Kemmerer, Giovanni Vigna, Christopher Kruegel, and economics professor Douglas Steigerwald — posed as computer hackers as a means of identifying malware-infected computers, otherwise known as botnets. A botnet, according to Professor Vigna, is as scary as it is scientific. “Botnets are a network of compromised computers under the control of a single entity, called a botmaster. A botnet can be asked to do anything, but usually they are used to perform denial-of-service attacks, send spam, [and] steal personal information from the compromised computer,” he said.
Giovanni Vigna pictured with his team in 2008.
Horrifyingly, their hacking revealed over 180,000 infected computers throughout the United States and Europe, all of which had been taken captive by one of the world’s most notorious botnets, Torpig. The process, albeit alarming, did prove fruitful for the researches, as their investigation yielded Torpig’s inner workings. Called its “underground economy” — how a botnet is able to trade and share people’s financial and personal information — the discovery was the chief motivator for the National Science Foundation grant.
After learning of Torpig’s unfortunately far-reaching extent, the researchers teamed up with the FBI, various law enforcement agencies, and financial institutions to notify the users of the aforementioned 180,000 computers, telling them that everything from their credit and debit card information to their email addresses were endangered. In addition to studying how cybercriminals could potentially affect electronic voting, the Computer Security Group is currently in the throes of other combating other threats to cyber security.
Having recently received a $6.2 million grant from the U.S. Army Research Office, the Security Group has been asked to team up with both UC Berkeley and the Georgia Institute of Technology as part of a multi-campus approach to assemble a more encompassing computer defense system. According to Professor Kemmerer, the project aims to enhance national security. “It’s called situational awareness. Every kind of information you can think of — including state secrets — exists on a computer somewhere. Unless that computer is locked up with no connection to the outside world, there’s a chance of that information getting compromised.”
Paul Wellman
Giovanni Vigna (right) discusses possible hacking strategies with one of his computer programming students during a hacking competition in December 2007.
Professor Vigna further explained the concerns behind cybercrime, and how the grant has afforded them a means to better combat it. “This is a grant to support the protection of computer networks from targeted attacks. The idea is to understand how a network infrastructure is used when carrying out a specific task, so that attacks against the network can be put in context. Unfortunately, identifying attacks in the first place is hard. Therefore the goal of our research is to develop novel techniques to support this type of analysis,” he said.
As per the goals of the grant funding, the multi-campus effort aims to improve cyber-security in five ways: create practical techniques that can automatically assess how any given network is being used, create an automatic means of assessing particular relationships within a network, develop a system to identify potential victims of cybercrime, develop a system to scale the impact of an executed attack, and create a means of visualizing a networks’ statuses in order to combat in-process attacks. Professor Kemmerer added that “game theory techniques” will be implemented as a means of determining “what the next move of the attackers might be and how effective different countermeasures would be.” In the meantime, what type of defense can computer uses employ against the cybercriminals’ offense? According to Professors Kruegel and Vigna, preventative measures abound.
Professor Kruegel attests to two of the Security Group’s own creations, Wepawet and Anubis. “People can cut and paste the link to a Web page (in the case of Wepawet) or a program (in the case of Anubis) and the sites will let them know whether the behavior of that page or program is actually malicious,” he said. Advocating cautionary measures, Professor Vigna suggests users “keep their software as updated as possible, stop using Internet Explorer, [and] not click on suspicious links that come in emails.” Professor Vigna also added that users need not worry about their documents and pictures being affected by a botnet — all the while maintaining that people should nevertheless remain cautious. “The malware can do anything. However, most of the time the malware wants to stay undetected for the longest time possible and therefore obvious destructive behavior is unlikely.”
Previous Month
Comments
What a waste of money in a time when our country is dead broke. I saw all the U.C. students crying, whining and protesting about having to actually pay for college yesterday on State Street. Yet, the U.C. system still seems to have a million Federal grants for superfluous projects. The last paragraph about sums it up....cutting and pasting a link to a website to see if the site is malicious? What do you think anti-virus and anti-spyware programs do? They almost always have a website advisor. More wasted money from our grand U.C. system and entitled college kids. Personally, I am sick and tired of seeing 20% of my paycheck go directly to taxes. If these kids actually had to pay for something, maybe they would see that Federal grants aren't free. We have created a generation of entitled babies. People need to start taking some personal responsibility instead of looking to the Big Brother government to give them a free life, and control their every action in the process. Call me harsh, but I just don't buy into the whole save the children political crap.
jtevis3 (anonymous profile)
March 5, 2010 at 9:06 a.m. (Suggest removal)
When people from China and Russia are hacking into our systems, a waste of money?
tabatha (anonymous profile)
March 5, 2010 at 9:26 a.m. (Suggest removal)
Thanks UCSB cyberstuds for your efforts in protecting America and Americans from criminals and terrorists!
jimstoic (anonymous profile)
March 5, 2010 at 3:14 p.m. (Suggest removal)
@jtevis: I had to sign up for an account to respond to such an ignorant posting. The money UCSB's security lab received came from the U.S. Army, not some secret UC coffer that would otherwise be used to reduce student fees. This money funds their stellar research work. Work that benefits you and I, regardless of your ability to recognize this fact. Computer security goes far beyond loading anti-virus and firewall software on your home computer. Example: these guys previously researched, discovered, and reported major security flaws electronic voting machines. Flaws that could be exploited by malicious organizations to sway our electoral process. This research literally helps protect our right to vote. Now they are researching botnets. Amongst other things, botnets can be used distributed denial of service attacks, mass spamming/phishing, identity theft and more, while running on unsuspecting host machines. Law enforcement and military agencies value information on these kinds of threats, hence the Army grant.
mjang (anonymous profile)
March 5, 2010 at 3:35 p.m. (Suggest removal)
Oh God.....Mjang, you would make a great politician. "It doesn't come from UC allocated money, so it's okay". That's like our City Council thinking huge projects are okay as long as the Feds pay for them. It still comes tax dollars, who cares if it's a grant!!!!! It's the principle. To pay for some bogus grant that goes to the UC and for college kids to work on some superfluous project that could have been done much better and more efficiently in the private sector.....it's backdoor socialism buddy. Watch out for those "huge cyber threats" that could threaten our national security. Private corporations deal with the same issues every day, but you don't see them giving the UC some huge development dollars. Oooooh, our electoral process......give me a break. It is already subverted by Commies like you who stuff the ballot boxes and funnel overseas money into campaigns for people like Obama who destroy America. Take your socialism and head to Cuba or Canada. You would blend in much better over there.
jtevis3 (anonymous profile)
March 5, 2010 at 4:45 p.m. (Suggest removal)
wow; jtevis3 took the fast track to crazy!
mjang, you valiantly presented some "reason" and "facts" to our belligerently ignorant reactionary, but without a satisfying result. I respect the effort.
Now please excuse me, mr. jtevis3, I've got a Comintern Congress to attend: Пролетарии всех стран, соединяйтесь!
binky (anonymous profile)
March 5, 2010 at 5:16 p.m. (Suggest removal)
Good grief, jtevis3 - Universities have been receiving funding from the military for years, during both Democratic and Republican governments, providing some of the technology that has made this country great.
"It is already subverted by Commies like you who stuff the ballot boxes and funnel overseas money into campaigns for people like Obama who destroy America" I can guarantee that you don't have one iota of proof of these statements; just "beliefs" of whatever you would like to believe. As for destroying America, the Bush grew the debt by $2.06 trillion in eights years, beating 42 presidents in 224 years growing the debt by $1.01 trillion. Please, get your facts straight.
Where is the socialism by Obama? The PRIVATE insurance companies are going to benefit greatly by the HCR with millions more customers, since there is no PO.
tabatha (anonymous profile)
March 5, 2010 at 6:48 p.m. (Suggest removal)
What is wrong with Botnet, it provides information like say, your banks backdoor programs password for service of accounts. It sends inforamtion regarding National Security intell to it's sender, it allows an enity like North Korea, to re-configuer our defense Satilies to target American Cities for Nuclear Attack. It feeds your banks saving and checking account information to theives who WILL steal all of your money. The Military feeds Univerisities money and hiring Students to research new and inovated ways to stop attacks from Hostile Countries, Terrorists and common Techno Theives. jtevis3, get your facts straight indeed or are you the person who wears an aluminum cap to keep the radio waves from disrupting your abbilities to perdict the end of the world?
Charles
dou4now (anonymous profile)
March 14, 2010 at 6:42 p.m. (Suggest removal)