Nepsal, ze by chtel utocit, ale je zjevne, ze to chtel umoznit.
Zjednodusene receno, vytycil zakladni cile wormnetu (cituji):
1: Portability - worm must be architecture-independent, and should work on different operating systems (in fact, we focused on Unix/Unix-alikes, but developed even DOS/Win code).
2: Invisibility - worm must implement stealth/masquerading techniques to hide itself in live system and stay undetected as long as it's possible.
3: Independence - worm must be able to spread autonomically, with no user interaction, using built-in exploit database.
4: Learning - worm should be able to learn new exploits and techniques instantly; by launching one instance of updated worm, all other worms, using special communication channels (wormnet), should download updated version.
5: Integrity - single worms and wormnet structure should be really difficult to trace and modify/intrude/kill (encryption, signing).
6: Polymorphism - worm should be fully polymorphic, with no constant portion of (specific) code, to avoid detection.
7: Usability - worm should be able to realize choosen mission objectives - eg. infect choosen system, then download instructions, and, when mission is completed, simply disappear from all systems.
A z bodu "learning" a "usability" mi moznost takovehoto utoku pomerne jasne vyplyva.
Ale dale jsem to nesledoval, takze nebudu spekulovat, nakolik to byla jen teoreticka studia ci mirne rozpracovany projekt, a nakolik se to da vnimat tak, ze se MZ chysta "znicit Internet" :-)
Predpokladam, ze jsi to cetl :-)
Nepsal, ze by chtel utocit, ale je zjevne, ze to chtel umoznit.
Zjednodusene receno, vytycil zakladni cile wormnetu (cituji):
1: Portability - worm must be architecture-independent, and should work on different operating systems (in fact, we focused on Unix/Unix-alikes, but developed even DOS/Win code).
2: Invisibility - worm must implement stealth/masquerading techniques to hide itself in live system and stay undetected as long as it's possible.
3: Independence - worm must be able to spread autonomically, with no user interaction, using built-in exploit database.
4: Learning - worm should be able to learn new exploits and techniques instantly; by launching one instance of updated worm, all other worms, using special communication channels (wormnet), should download updated version.
5: Integrity - single worms and wormnet structure should be really difficult to trace and modify/intrude/kill (encryption, signing).
6: Polymorphism - worm should be fully polymorphic, with no constant portion of (specific) code, to avoid detection.
7: Usability - worm should be able to realize choosen mission objectives - eg. infect choosen system, then download instructions, and, when mission is completed, simply disappear from all systems.
A z bodu "learning" a "usability" mi moznost takovehoto utoku pomerne jasne vyplyva.
Ale dale jsem to nesledoval, takze nebudu spekulovat, nakolik to byla jen teoreticka studia ci mirne rozpracovany projekt, a nakolik se to da vnimat tak, ze se MZ chysta "znicit Internet" :-)
ČLÁNKY DO MAILU