Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Sick PCs should be banned from the net says Microsoft
10-07-2010, 12:25 AM,
#1
Sick PCs should be banned from the net says Microsoft
Published: 6th Oct 2010 13:04:33

Virus-infected computers that pose a risk to other PCs should be blocked from the net, a senior researcher at software giant Microsoft suggests.

The proposal is based on lessons from public health, said Scott Charney of the firm's trustworthy computing team.

It is designed to tackle botnets - networks of infected computers under the control of cybercriminals.

Putting machines in temporary quarantine would stop the spread of a virus and allow it to be cleaned.

"Just as when an individual who is not vaccinated puts others' health at risk, computers that are not protected or have been compromised with a bot put others at risk and pose a greater threat to society," he said in a blog post.

"In the physical world, international, national, and local health organisations identify, track and control the spread of disease which can include, where necessary, quarantining people to avoid the infection of others.

"Simply put, we need to improve and maintain the health of consumer devices connected to the internet in order to avoid greater societal risk."

Botnets have become the scourge of the internet and a favourite amongst cybercriminals.

Computers are recruited into a network when they become infected with a virus. These are commonly distributed by criminals as attachments in e-mail messages, and as software downloads masquerading as legitimate programs.

Networks can consist of a few hundred to a few thousand Windows machines. However, some can contain millions of PCs.

The networks are usually under the control of criminals who commonly hire them out to others for various means including pumping out spam or mounting "denial of service" attacks against websites.

There may be some who would say that Microsoft shouldn't be on the internet until they get their own house in order”

"Commonly available cyber defences such as firewalls, antivirus and automatic updates for security patches can reduce risk, but they're not enough," wrote Mr Charney. "Despite our best efforts, many consumer computers are host to malware or are part of a botnet."

His proposal, presented at the International Security Solutions Europe (ISSE) Conference in Berlin, Germany, is for all computers to have a "health certificate" to prove that it is uninfected before it connects to the net.

"Although the conditions to be checked may change over time, current experience suggests that such health checks should ensure that software patches are applied, a firewall is installed and configured correctly, an antivirus program with current signatures is running, and the machine is not currently infected with known malware," he wrote in the accompanying paper.

If the health certificate indicates a problem the computer could be prompted to download a missing patch or update its anti-virus settings.

"If the problem is more serious (the machine is spewing out malicious packets), or if the user refuses to produce a health certificate in the first instance, other remedies such as throttling the bandwidth of the potentially infected device, might be appropriate."

However, he said, that cutting people off the internet entirely "could well have damaging consequences".

"An individual might be using his or her internet device to contact emergency services and, if emergency services were unavailable due to lack of a health inspection or certificate, social acceptance for such a protocol might rightly wane.

"But much like a cell phone may require a password but still allow emergency calls to be made even without that password, infected computers may still be permitted to engage in certain activities."

Graham Cluely, of security firm Sophos, said that some ISPs had previously throttled some users suspected of having infections.

"They knock off users who look like they are sending large numbers of spam e-mails - an indication of being part of a botnet," he told BBC News.

Whilst it solves the problem, he said, it can cause problems for computer users.

"The challenge then is what the poor old user does," he said.

"They can't get on the net to download fixes."

He also said that there was a danger that many people would think that any message telling them that they had an infection on their machine was a scam.

The approach is used around the world. In Japan, for example, more than 70 ISPs have formed the Cyber Clean Center, which contacts users and provides security software to prevent further infections.

Other initiatives exist in France and Australia.

Microsoft said that to make its plan work itwould need four steps, including defining a health computer, creating a trusted system for health certificates and finding a way for ISPs to process and act on them.

Relevant legal frameworks would also be needed, it said.

But Mr Cluley questioned whether Microsoft was best placed to recommend such security measures.

"Microsoft doesn't have a faultless record when it comes to security," he said.

"It has improved over the years, but every month they have to release a package of updates.

"There may be some who would say that Microsoft shouldn't be on the internet until they get their own house in order."

http://www.londonwired.co.uk/news.php/96451-Sick-PCs-should-be-banned-from-the-net-says-Microsoft
“Everything Popular Is Wrong” - Oscar Wilde
Reply
10-07-2010, 01:08 AM,
#2
RE: Sick PCs should be banned from the net says Microsoft
Ditto, get your act together microsoft.
An error does not become truth by reason of multiplied propagation, nor does truth become error because nobody sees it.
Mohandas Gandhi


Each of us is put here in this time and this place to personally decide the future of humankind.
Did you think you were put here for something less?
Chief Arvol Looking Horse
Reply
10-07-2010, 01:40 AM, (This post was last modified: 10-07-2010, 01:42 AM by dicktater.)
#3
RE: Sick PCs should be banned from the net says Microsoft
Quote:['Trustworthy computing' as everyone knows by now has nothing to do with user safety: it's the collected tricks to enforce DRM on Windows computers by - amongst other things - only connecting peripheral devices that deliberately ruin signal quality. ....]

National Cybersecurity Bullshit Month
http://rixstep.com/1/1/0/20091003,00.shtml

Hahahahahaha! http://staysafeonline.org/ is built with Drupal running on Apache.
LOLLOLLOLLOLLOLLOLLOLLOLLOLLOLLOLLOLLOLLOLLOL
Reply
10-07-2010, 07:26 AM,
#4
RE: Sick PCs should be banned from the net says Microsoft
(10-07-2010, 12:25 AM)drummer Wrote: "Just as when an individual who is not vaccinated puts others' health at risk, computers that are not protected or have been compromised with a bot put others at risk and pose a greater threat to society," he said in a blog post.

Interesting argument, look at the vaccination logic.. if you're not vaccinated you're danger to others?! But since the others are vaccinated, how is that possible?

Reply
10-07-2010, 06:50 PM,
#5
RE: Sick PCs should be banned from the net says Microsoft
At one point Microsoft released a statement stating that a PC without windows on it was to be referred to as a "naked PC".

nice. they really need to die. migrate your friends!! get them off!!
Reply
10-07-2010, 08:10 PM,
#6
RE: Sick PCs should be banned from the net says Microsoft
Microsoft Proposal Opens Door For Government Licensing To Access Internet

State should have power to block individual computers from connecting to world wide web, claims Charney

Paul Joseph Watson
Prison Planet.com
Thursday, October 7, 2010

A new proposal by a top Microsoft executive would open the door for government licensing to access the Internet, with authorities being empowered to block individual computers from connecting to the world wide web under the pretext of preventing malware attacks.

Speaking to the ISSE 2010 computer security conference in Berlin yesterday, Scott Charney, Microsoft vice president of Trustworthy Computing, said that cybersecurity should mirror public health safety laws, with infected PC’s being “quarantined” by government decree and prevented from accessing the Internet.

“If a device is known to be a danger to the internet, the user should be notified and the device should be cleaned before it is allowed unfettered access to the internet, minimizing the risk of the infected device contaminating other devices,” Charney said.

More: http://www.prisonplanet.com/microsoft-proposal-opens-door-for-government-licensing-to-access-internet.html
Reply
10-08-2010, 02:21 AM, (This post was last modified: 10-08-2010, 02:22 AM by yeti.)
#7
RE: Sick PCs should be banned from the net says Microsoft
(10-07-2010, 07:26 AM)Hans Olo Wrote:
(10-07-2010, 12:25 AM)drummer Wrote: "Just as when an individual who is not vaccinated puts others' health at risk, computers that are not protected or have been compromised with a bot put others at risk and pose a greater threat to society," he said in a blog post.
Interesting argument, look at the vaccination logic.. if you're not vaccinated you're danger to others?! But since the others are vaccinated, how is that possible?

Notice he doesn't say that the others are vaccinated, because he is referring to others who are not vaccinated, just as he is referring to other PCs which are not protected.

[Image: randquote.png]
Reply
10-08-2010, 11:41 AM,
#8
RE: Sick PCs should be banned from the net says Microsoft
The big question is will it be a whitelist or a blacklist or in another context sick until proven healthy in a variance of an internet 'hall pass' The internet itself surveillance system.

Either way the logic is flawed, red tape in getting activated/reactivated. This could be a RealID* by simply applying the certification/scan system to machines rather than or in combination with affixing the "verified" identification system to people.

*
Quote:open the door for government licensing to access the Internet

The infrastructure would be costly and could price a lot of ISP out of range in. The computer filters themselves could be a tiptoe to localized "great firewalls" filtering out "sick" computers. Just a way to censor/block users/computers (content too if you include servers) ready and ripe for abuse.

The eventuality would be that each system getting validated as they go past in real time - sounds expensive and a bandwidth drain not to mention the snooping. Would you scan each system as they go past? This based on the trend that these alleged virus threats are more common as time goes on. What about false positives?

So which virus scanners / malware sweepers would be certified? Like Trusted SSL root certificates which is limited to a handful of certified companies?

Guess you couldn't customize a box to go on the net unless the validation software/protocol was compatible with your home made OS. How would this apply to different flavours of *nix?

I suppose Damn Vulnerable Linux would be barred outright.

Quote:"An individual might be using his or her internet device to contact emergency services and, if emergency services were unavailable due to lack of a health inspection or certificate, social acceptance for such a protocol might rightly wane.

"But much like a cell phone may require a password but still allow emergency calls to be made even without that password, infected computers may still be permitted to engage in certain activities."

Yeah at least allow an avenue to download a patch or get support.

Another angle is setting this up as a model and psychologically conditioning public health safety laws in regards to vaccinations/quarantines. While they're at it they may as well use this surveillance quarantine system based on the wide cast definitions of terrorism and hate speech.

Since financial systems are internet based we have this same infrastructure capable of monitoring every transaction. Right in line to enforce the IMF financial governance in their Statement of Surveillance Priorities initiative (Download PDF).

Quote:['Trustworthy computing' as everyone knows by now has nothing to do with user safety: it's the collected tricks to enforce DRM on Windows computers by - amongst other things - only connecting peripheral devices that deliberately ruin signal quality. ....]

Good point Mr. Tater. That fits nicely into Anti-Counterfeiting Trade Agreement (ACTA) and WIPO global "guidelines" being tabled for legislation lock step in several dozen nations.

Microsoft software installed on a nuclear power plant was just allegedly filleted with 4 zero-day attacks. The track record of Microsoft doesn't warrant them being the world internet security advisor. Get their own house in order indeed.

[Image: bill-gates-bsod.jpg]

Oh speak of beelzebub .. I gtg and reboot and install my latest Windows patch -- .NET is Framework yet another security issue 14th .NET security patch since 24-Aug-2009.
There are no others, there is only us.
http://FastTadpole.com/
Reply
10-08-2010, 03:31 PM,
#9
RE: Sick PCs should be banned from the net says Microsoft
If this was implemented, one could create a virus with the sole purpose of knocking people off the net. It would spread around while it lay dormant, then on a certain day, BOOM! Hundreds of thousands of computers suddenly are cut off for virus activity or false DRM violations or whatever... The creeps in power would love to use a tool like that for social experiments.

Of course the whole idea of building another layer of security is a waste of time because the miscreants will find a way around it anyway, while everyone else gets reamed.
[Image: randquote.png]
Reply


Possibly Related Threads...
Thread Author Replies Views Last Post
  Have I been banned from YouTube ?. rockingtheboat 2 376 04-11-2014, 02:52 AM
Last Post: stiffy
  Microsoft says Windows 8 is a Failure! shortwave 14 1,619 05-15-2013, 09:56 PM
Last Post: ComradeRed
Photo Microsoft vs. Apple Infographic Details Rivalry from Inception to Global Domination FastTadpole 0 559 06-24-2011, 04:44 AM
Last Post: FastTadpole
  It's official: Adobe Reader is world's most-exploited app - The new Microsoft h3rm35 0 530 03-10-2010, 09:31 PM
Last Post: h3rm35
  Windows 7 Update "Phones Home" to Microsoft Every 90 Days drummer 0 593 02-13-2010, 03:17 AM
Last Post: drummer
  Microsoft: No NSA Backdoor in Windows 7 drummer 14 3,792 01-27-2010, 10:13 PM
Last Post: TheQleaner
  Microsoft exposes Firefox users to drive-by malware downloads Easy Skanking 2 821 10-16-2009, 10:19 PM
Last Post: Easy Skanking
  Microsoft Offers BestBuy Employees Anti-Linux Training drummer 0 616 09-11-2009, 10:31 AM
Last Post: drummer
  Microsoft COFEE Won't Perk You Up drummer 9 1,857 06-16-2009, 08:42 PM
Last Post: yeti
  New Microsoft Internet Explorer allows flaw --- 11 2,145 05-29-2009, 01:27 AM
Last Post: Weyland

Forum Jump:


Users browsing this thread: 1 Guest(s)