Network Security News

There are many sentient security-related watches such as SNORT, they are evolving as cyber-threats evolve, in turn. Static security means are no more effective; human-only-powered security systems are not capable of handling large-scale attacks, thus sentient software watches are the obvious security response. Simple Thoughts elaborates on this: Scientists devise cyber security ‘neighborhood watch’.

In more details: Argonne National Laboratory have devised a program that allows for Cyber Security defense systems to communicate when attacked and transmit that information to cyber systems at other institutions in the hopes of strengthening the overall cyber security posture of the complex.

"The Federated Model for Cyber Security acts as a virtual neighborhood watch program. If one institution is attacked; secure and timely communication to others in the Federation will aide in protecting them from that same attack through active response," cyber security officer Michael Skwarek said.

Prior to the development of the Federated Model for Cyber Security, the exchange of hostile activity was solely on the shoulders of the human element.

In cyber attacks, every second counts and the quicker that such information can be securely shared, will assist in strengthening others against similar attacks.

With millions of cyber security probes a day, the human element will not be successful alone. Such a number can't be effectively monitored, this is why automated early warning systems can be an effective 'first response' solution.

"This program addresses the need for the exchange of hostile activity information, with the goal of reducing the time to react across the complex. History has shown, hostile activity is often targeted at more than one location, and having our defenses ready and armed will assist greatly," Skwarek said.

Currently, the program is capable of transmitting information regarding hostile IP addresses and domain names, and will soon be able to share hostile email address and web URLs to others in the Federation.

It is obvious that this watch can't be the sole defense core, but only a trigger indicating that network is being probed or attacked, this requesting an adequate response from other, dormant under normal conditions, security systems.

This article was brought to you by the developers of IPHost Network Monitor, network and server monitoring software.