Author_Institution :
Dept. of Comput. Sci., Columbia Univ., NY, USA
Abstract :
Zero-day attacks are those for which users receive no prior warning and thus have no preventive measures in place. We integrate the vulnerability discovery, patch generation, and patch application cycles into a system that automatically detects a new attack, analyzes its modus operandi, determines the best software patch, and applies it at the desired level of granularity LAN, enterprise, or Internet-wide. We develop a vaccination system that automatically generates patches to protect an application´s source code.
Keywords :
computer crime; computer network management; computer viruses; computer crime; computer network management; patch-on demand vaccination system; worms; zero-day attack; Application software; Cryptography; Delay; Filtering; Instruments; Internet; Protection; Sensor phenomena and characterization; Testing; Viruses (medical);
