An overview of STAKCERT framework in confronting worms attack

Author

Saudi, Madihah Mohd ; Cullen, Andrea J. ; Woodward, Mike E. ; Hamid, Hanizah Ab ; Abhalim, Azni Haslizan

Author_Institution

Sch. of Comput., Inf. & Media, Univ. of Bradford, Bradford, UK

fYear

2009

fDate

8-11 Aug. 2009

Firstpage

104

Lastpage

108

Abstract

A procedure is one of the most important elements that should be emphasized when handling any incident related with the cyber world. It is easily forgotten by many organizations, IT administrator and users, especially when dealing with the worms attack. Using the incident response methodology as the basis to build up the STAKCERT framework, the researchers have proposed this novel framework which helps to increase the efficiency in handling worm incident, thus facilitate the process of responding to the worm incident. The STAKCERT framework consists of 2 phases where in phase 1, a novel standard operating procedure in worm detection and analysis have been introduced. In phase 2 of the framework, the worm isolation procedure is inspired by apoptosis. Apoptosis is also known as cell programmed death borrowed from the biology term.

Keywords

invasive software; STAKCERT framework; cyber world; incident response methodology; starter kit computer emergency response team; worm attack; worm incident handling; worm isolation; Application software; Cells (biology); Computer displays; Computer networks; Computer security; Computer worms; Humans; Immune system; Informatics; Phase detection; STAKCERT framework; incident response; standard operating procedure; worms attack;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Science and Information Technology, 2009. ICCSIT 2009. 2nd IEEE International Conference on

Conference_Location

Beijing

Print_ISBN

978-1-4244-4519-6

Electronic_ISBN

978-1-4244-4520-2

Type

conf

DOI

10.1109/ICCSIT.2009.5234764

Filename

5234764