Members
Stats
  • Total Posts: 28498
  • Total Topics: 8238
  • Online Today: 842
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)












Author Topic: Microsoft Wants to Disconnect "Infected" PCs (Cyber Clean Center)  (Read 2422 times)

0 Members and 1 Guest are viewing this topic.

Samker

  • SCF Administrator
  • *****
  • Posts: 7206
  • KARMA: 291
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum


The software giant is calling for a collective health policy to certify a computer's health and restrict the Internet access of PCs infected with malware.


The problem with PCs infected with bots has stymied security professionals ever since botnets came into wide use among cyber criminals. Attempts to shut down the command-and-control servers only temporarily have any effect, and investigators take months -- or years -- to nab the those responsible for the attacks.

Now Microsoft is arguing that the security community needs to develop a collective health policy to restrict sick PCs -- those infected with malware -- from connecting to the Internet.

"Just as when an individual who is not vaccinated puts others' health at risk, computers that are not protected or have been compromised with a bot put others at risk and pose a greater threat to society," Scott Charney, Microsoft's corporate vice president of Trustworthy Computing, says in a blog post published Tuesday: http://blogs.technet.com/b/microsoft_on_the_issues/archive/2010/10/05/the-need-for-global-collective-defense-on-the-internet.aspx

The idea is not new. Many security experts have talked about quarantining infected computers. Research has shown that quarantining compromised computers on the top-50 networks showing signs of infection could eliminate half of all bots: http://www.technologyreview.com/computing/25245/
Companies that run network access control (NAC) systems can restrict computers from connecting to their network if they don't have up-to-date security software or do not meet other requirements.

However, such policies rely on the Internet service provider to be the enforcer and cut off customers from the Internet. The problem is customers then require support, which raises the ISP's costs tremendously.

Even so, fearing government mandates to block compromised customers, some Internet service providers have banded together to deal with botnets. In Japan, more than 70 ISPs have partnered with the government to create the Cyber Clean Center: https://www.ccc.go.jp/en_ccc/index.html , which covers 90 percent of Internet users in that country. Internet service providers in France, Australia, and the Netherlands have also made attempts to collectively tackle the issue of bots.

Microsoft is calling for a four-step plan to implement a health policy for the Internet. First, we must develop a way to define and demonstrate "good health," perhaps a combination of active client-side defenses and a lack of malicious data from a system. Second, a trusted system of health certificates must be created to avoid spoofing a health system. Third, Internet service providers need a way to request and accept health certificates and take action. And fourth, a legal and regulatory framework that supports the model must be created.

"In the physical world, international, national, and local health organizations identify, track, and control the spread of disease which can include, where necessary, quarantining people to avoid the infection of others," Charney argues in his post. "Simply put, we need to improve and maintain the health of consumer devices connected to the Internet in order to avoid greater societal risk."

(PCW)

Samker's Computer Forum - SCforum.info





AllSecurityUp

  • SCF Member
  • **
  • Posts: 39
  • KARMA: 10
    • Free Virus Spyware Adware Registry Scan
Re: Microsoft Wants to Disconnect "Infected" PCs (Cyber Clean Center)
« Reply #1 on: 05. October 2010., 22:29:28 »
This can be quite controversial.

I can see the rationale for this, particularly as bots as an example can cause widespread problems beyond those infected.  However users may still need net access to help solve their problems.

In this sense I guess 'restrictive' perhaps need to be further defined.

Although there are a range of users from those with little or even no security to those with extremely high security including self designed firewalls, no one is really truly safe.

Hence I'm not convinced either way at this stage, but I can certainly see the logic behind such a policy, especially if bots become more of a problem.
Think before you think you'll do something.
Easy PC Security Tips

luffy

  • SCF Member
  • **
  • Posts: 44
  • KARMA: 13
Re: Microsoft Wants to Disconnect "Infected" PCs (Cyber Clean Center)
« Reply #2 on: 07. October 2010., 04:12:47 »
MS is god and I want to control god.

bugmenot

  • SCF Member
  • **
  • Posts: 33
  • KARMA: 2
Re: Microsoft Wants to Disconnect "Infected" PCs (Cyber Clean Center)
« Reply #3 on: 19. October 2010., 09:47:20 »
ccc vs ms

qwertysan

  • SCF Member
  • **
  • Posts: 31
  • KARMA: 5
Re: Microsoft Wants to Disconnect "Infected" PCs (Cyber Clean Center)
« Reply #4 on: 02. November 2010., 03:04:31 »
This can be quite controversial.

I can see the rationale for this, particularly as bots as an example can cause widespread problems beyond those infected.  However users may still need net access to help solve their problems.

In this sense I guess 'restrictive' perhaps need to be further defined.

Although there are a range of users from those with little or even no security to those with extremely high security including self designed firewalls, no one is really truly safe.

Hence I'm not convinced either way at this stage, but I can certainly see the logic behind such a policy, especially if bots become more of a problem.


yeah quite controversial.
how about user that need to solve their problem and search it online?
so it need to be defined more before i agree to that kind of policy

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising