Advanced Search

Browse by Discipline

Scientific Societies

E-print Alerts

Add E-prints

E-print Network

  Advanced Search  

Active Systems Management: The Evolution of William A. Arbaugh

Summary: Active Systems Management: The Evolution of
William A. Arbaugh
Department of Computer Science
University of Maryland
College Park, Maryland 20742
Abstract. For over twenty-five years, the security community has fo-
cused on improving security, and yet information systems remain as vul-
nerable as ever (perhaps more so). A perfect example of this is the (first
intrusion occurred on July 10, 2001 and peaked on July 19, 2001) code
red worm which automatically exploits a vulnerability in Microsoft's In-
ternet Information Server (IIS). Following a successful exploitation of
a host, the worm propagates by scanning for other vulnerable hosts to
infect. Nine days later, approximately 250,000 hosts were reported as
infected. The unfortunate truth about the code red incident is that ALL
of the intrusions should have been prevented. The incidents should have
been prevented because Microsoft released a patch/fix for the vulnerabil-
ity on June 18, 2001 almost a month before the beginning of the code
red worm's first release. The fact that information systems remain as


Source: Arbaugh, William A. - Institute for Advanced Computer Studies & Department of Computer Science, University of Maryland at College Park


Collections: Computer Technologies and Information Sciences