California scientists wage joint war on Internet plagues

September 21, 2004

San Diego and Berkeley, CA, September 21, 2004 -- Computer scientists at the University of California, San Diego and the International Computer Science Institute (ICSI), affiliated with UC Berkeley, have joined forces to launch a full-scale assault on viruses, worms and other plagues afflicting the Internet. With $6.2 million in funding over five years from the National Science Foundation (NSF) through its new Cyber Trust program, the scientists will develop technologies to detect, analyze and defend against large-scale Internet attacks.

The Center for Internet Epidemiology and Defenses (CIED) will be co-located in San Diego and Berkeley, CA. It will tackle what has been called a grand-challenge problem for computer security researchers: defending against epidemic-style attacks. "The very openness and efficiency that drove the Internet's success also make it an ideal breeding ground for infectious network agents," said Stefan Savage, the center's Project Director and a professor in the Computer Science and Engineering department of UCSD's Jacobs School of Engineering. "Infection is spread via contact and the Internet allows a host infected in one place to rapidly contact any other system on the planet. A new worm can become a massive outbreak in minutes -- or even seconds. In fact, the speed of some Internet pathogens is so great that only fully automated defenses can even hope to keep up. Building such defenses is our ultimate goal."

According to fellow principal investigator Vern Paxson of ICSI, at the core of any effective defense will be a better understanding of the fundamental capabilities, characteristics and limitations of epidemic attacks. "It is easy to build a defense against one particular known virus or worm; this is what we do now," said the senior researcher, who will lead CIED activities at ICSI's Center for Internet Research (ICIR), "But to stop whole classes of these pathogens requires far more insight into what it means to be an epidemic and how infectious behavior stands apart from legitimate use."

CIED is one of two Cyber Trust Centers created today in the inaugural round of funding from the $30 million program created last December by the NSF. They were chosen from among 25 full proposals submitted by leading U.S. research institutions. The second is the Security Through Interaction Modeling (STIM) Center, based at Carnegie Mellon University. STIM will focus on deeper understanding of the Internet's 'ecology' in order to build better security defenses. "The Cyber Trust program promotes research into more dependable, accountable and secure computer and network systems," said Carl Landwehr, NSF program director for Cyber Trust. "These activities are looking not only for new ways to cope with imperfections in today's systems, but also for the knowledge and techniques to build better systems in the future."

In addition to the NSF's funding, CIED will also receive support from Microsoft, Intel and Hewlett-Packard, as well as from UCSD's Center for Networked Systems, a recently-created $10 million research center funded by AT&T, Alcatel, Hewlett Packard and QUALCOMM. Co-principal investigators on the project include ICSI researcher Nicholas Weaver, and professors Geoffrey M. Voelker and George Varghese from UCSD's Computer Science and Engineering department. The center will also fund research activities at the San Diego Supercomputer Center (SDSC) and the Cooperative Association for Internet Data Analysis (CAIDA), and will collaborate with the California Institute for Telecommunications and Information Technology [Cal-(IT)²].

CIED's research efforts revolve around measuring and analyzing live Internet epidemics and then using the insights gained to develop ever more robust defense mechanisms. To gain visibility into pathogens propagating across the global Internet, CIED members say a top priority for the center's first year will be the construction of large-scale monitoring instruments ­ 'network telescopes' and 'network honeyfarms' ­ to provide early warning of incipient outbreaks, to measure the dynamics of epidemics as they spread, and to collect forensic data about the modes and methods of attackers.

To provide statistically meaningful data on short time-scales, CIED plans to push this distributed monitoring effort to unprecedented scales by monitoring attacks across millions of potential Internet systems at once. From this data, center researchers expect to craft practical solutions to counteract new outbreaks on the Internet before they reach pandemic levels. Among these initial defenses, the center will develop algorithms for automatically deriving signatures of new worms and viruses, as well as mechanisms to detect and suppress infectious communication behaviors. Researchers will also address real-world legal issues -- including privacy, insurance exposure to large-scale Internet outbreaks, and the treatment of forensic evidence -- that arise from CIED's plan for distributed data collection, filtering, analysis, suppression and prototype defense mechanisms.

In addition to its core research mission, CIED will initiate significant efforts in education and workforce development and will coordinate with ongoing outreach activities on both campuses. The center's researchers will incorporate their results into undergraduate and graduate courses and curricula, and will present their research annually at a center-organized outreach workshop.
Related Links

National Science Foundation
NSF Cyber Trust Program
ICSI Center for Internet Research
UCSD Jacobs School of Engineering
UCSD Department of Computer Science and Engineering
San Diego Supercomputer Center
California Institute for Telecommunications and Information Technology

University of California - San Diego

Related Data Articles from Brightsurf:

Keep the data coming
A continuous data supply ensures data-intensive simulations can run at maximum speed.

Astronomers are bulging with data
For the first time, over 250 million stars in our galaxy's bulge have been surveyed in near-ultraviolet, optical, and near-infrared light, opening the door for astronomers to reexamine key questions about the Milky Way's formation and history.

Novel method for measuring spatial dependencies turns less data into more data
Researcher makes 'little data' act big through, the application of mathematical techniques normally used for time-series, to spatial processes.

Ups and downs in COVID-19 data may be caused by data reporting practices
As data accumulates on COVID-19 cases and deaths, researchers have observed patterns of peaks and valleys that repeat on a near-weekly basis.

Data centers use less energy than you think
Using the most detailed model to date of global data center energy use, researchers found that massive efficiency gains by data centers have kept energy use roughly flat over the past decade.

Storing data in music
Researchers at ETH Zurich have developed a technique for embedding data in music and transmitting it to a smartphone.

Life data economics: calling for new models to assess the value of human data
After the collapse of the blockchain bubble a number of research organisations are developing platforms to enable individual ownership of life data and establish the data valuation and pricing models.

Geoscience data group urges all scientific disciplines to make data open and accessible
Institutions, science funders, data repositories, publishers, researchers and scientific societies from all scientific disciplines must work together to ensure all scientific data are easy to find, access and use, according to a new commentary in Nature by members of the Enabling FAIR Data Steering Committee.

Democratizing data science
MIT researchers are hoping to advance the democratization of data science with a new tool for nonstatisticians that automatically generates models for analyzing raw data.

Getting the most out of atmospheric data analysis
An international team including researchers from Kanazawa University used a new approach to analyze an atmospheric data set spanning 18 years for the investigation of new-particle formation.

Read More: Data News and Data Current Events is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to