Command and control structures in malware: from handler/agent to P2P
- Autores: David Dittrich, Sven Dietrich
- Localización: ;login:: the magazine of USENIX & SAGE, ISSN 1044-6397, Vol. 32, Nº. 6 (DIC), 2007, págs. 8-17
- Idioma: inglés
- Texto completo no disponible (Saber más ...)
-
Resumen
Internet attack tools have evolved, similary to the way that operating systems and applications themselves have evolved. We will focus on the particular aspect, the mechanisms to allow control of the increasing number of hosts being expolied. The result is an increase in effieciency that allows attackers today to rapidly marshal the computing resources of milllions of personal computers across the globe in order to use them for a wide range of criminal activities. In particular, we consider the impact of P2P command and control mechanisms and others features of distributed attack tools that result in a distributed attack network resilient to current methods of detection, monitoring and takedown by any individual defender or rival.
We look at the impact these strcutures have on incident response and muse about the trends for the years to come.
