Good botnets to take on the bad boys
By Barry Collins
Posted on 23 Apr 2008 at 08:56
Researchers at the University of Washington have come up with a novel way of combating botnets - beating them at their own game.
The university's Phalanx system uses a swarm of good computers to battle the infected machines, ensuring that only a small proportion of the attacking machines can ever affect a server.
Botnets are commonly used to create denial of service attacks, crippling websites by flooding them with requests for information. Phalanx aims to stop the majority of those requests getting through, by using a network of computers to create a shield around the server.
Rather than the server being queried directly, all information must pass through so-called "mailbox" computers. "Phalanx makes only the modest assumption that the aggregate capacity of the swarm exceeds that of the botnet," writes the university's Colin Dixon and Thomas Anderson, in paper explaining the Phalanx concept.
"A client communicating with a destination bounces its packets through a random sequence of end-host mailboxes; because an attacker doesn't know the sequence, they can disrupt at most only a fraction of the traffic, even for end-hosts with low bandwidth access links."
The Phalanx system can also demand that the incoming computer solves a cryptographic puzzle before being granted access to the server. A zombie computer sending multiple requests to the server will soon be grounded by the computational requirements of the puzzle, while genuine single attempts will pass through with ease.
The Washington team claim the system can not only be used on corporate networks, but by using home machines too. "As future work, we are exploring modifying a popular BitTorrent client to convert the millions of BitTorrent users into a community-based botnet defence," the paper claims.
"A single large ISP should be able deploy an effective DoS solution for its customers, even from a massive attack, without needing to first reach a global agreement with all or most other ISPs," it adds.
From around the web
advertisement
- Chrome's shine getting lost in translation
- BytePac: the cardboard hard disk enclosure
- How tech loosens our grip on reality
- Hokum watch: Safer Internet Day
- Why I'm deleting Adobe from my PC
- Prepare to be patronised: it's Safer Internet Day
- Dear Sony, Samsung and every other tech company in the world: stop trying to be Apple
- Will Apple's Final Cut Pro X update placate the pros?
- Smartr Contacts for iPhone review
- Switching to Office 365's Outlook Web App
- Why virtualisation hasn't slowed the growth of data
- How to make Google AdWords work for your business
- The curse of sloppily written software
- Paying for your crimes with Bitcoin
- Behind the scenes: tech support for Formula 1
- The security risk of fat fingers
- Why Windows Phone 7 isn't quite ready for business
- When will Microsoft stop fiddling with Windows 8?
- Flash down the pan?
- Metro Style apps vs desktop applications
advertisement
Printed from www.pcpro.co.uk