About CSDS Ongoing research projects at CSDS Information Assurance Scholarships at UI Research Experience for Undergraduates Announcements from CSDS
Important Links Employment Opportunities at CSDS CSDS Personnel UI Information Assurance Curriculum Graduate Student Resources


UI Computer Experts Urge Users To Join Fight Against Worms, Viruses, Spam, Blackouts

Aug. 22, 2003-- MOSCOW -- After 10 days of wrestling with the MS-Blaster and Welchia worms, the SoBig virus and proliferation of spam, information technology specialists and computer security researchers at the University of Idaho have come up for air. They urge computer users to join in the charge to gain control over today's modern communication tools.

The specialists are updating an online tutorial about computer security, just signed a contract for a new systemwide anti-virus protection with Norton, are developing new spam strategies and Vandal mail filtering, and a course about "Computer Security at Home (and Office)," to be available on DVD to the public by January.

"In comparison to the impact at other institutions and governments, UI never lost control of its network or had complete shut-downs as a result of the Blaster worm," said Tony Opheim, associate director of UI's technical development and networks. Of UI's estimated 7,000 computers, only 330 have been compromised to date.

Opheim, Huba Leidenfrost, security analyst for UI Information Technology, Deborah Frincke, director of the Center for Secure and Dependable Systems, and Paul Oman, UI researcher in electric power grid protection, grapple with the convergence of the recent northeast power blackout, the "worst-ever worm week," and other virus and spam annoyances. They credit the fast technology growth, high market demands, worldwide connectivity and "vulnerable operating and network systems that are figuratively held together by duct tape as new technologies hit the market," said Frincke.

"Unless you unplug your computer and networking, there's no perfect computer security," says Leidenfrost. He posted a "Run Safe" website to learn how to become more security-minded at www.its2.uidaho.edu/runsafe. His top three tips include: "learn how to patch your operating systems, update your software and programs daily, and change your e-mail habits. Consider this maintenance similar to having regular oil changes for your car or dental checkups." Leidenfrost cautions Web-surfers to avoid disreputable sites, not to open unknown e-mail or attachments, and to update operating systems, security and other software daily.

"With Windows XP systems there's a feature to find updates daily and you then are given a choice to install them," says Opheim. "Use it." He also suggests running anti-virus checks and updates and enabling the personal firewall feature on Windows XP.

Frincke, funded by the Idaho State Board of Education, plans to have a course on home and office computer security available on DVD to the public through UI's Engineering Outreach by January. She and her former student, John Shovic, also helped research and develop the product Contego, owned by Tri-Geo, which protects whole systems in organizations. Several researchers in CSDS are working on ways to protect systems against worms and viruses by "hardening the operating system" to discover the abnormal, and to scrutinize developing software and hardware to ensure that the protocols don't have so many flaws.

Oman, who researches security of power grids and other "multiple-layered systems," says the local electrical power systems are just as vulnerable to failure as those in the recent East Coast blackout.

General shared wisdom to improve intrusion hazards:

· Set anti-virus software to auto-download virus and worm signatures; backup your files.

· Be sure your anti-virus software scans attachments as well as signatures; and both in and out-going mail.

· When faced with an active worm/virus, manually check the provider site to ensure you have the latest signature file.

· Copycats often follow major attacks. Anticipate variations of the worm/virus that can do more damage than the original.

· Just leaving your computer off won't avoid trouble. When gone for long periods, make sure that your anti-virus software is up to date before downloading any e-mail.

· Don't send e-mail with generic or cryptic subject lines if possible, especially if you use an attachment. That forces receivers to choose between trashing it or opening a risky file. Avoid attachments as much as possible. Use a firewall as well as anti-virus software. You then can shut off entire suspicious programs. Try Intrusion Detection Systems that also include anti-spam packages.

· Purchase your software rather than using bootlegged versions, so you can contact the source company for security patches if necessary. Continuously patching computers is a reality for now. Consider it a regular chore.

· Support research to reduce the chore. Sign up for CyberSecurity courses at UI or pursue a career path. Go to www.cs.uidaho.edu and www.csds.uidaho.edu to learn more.

-30-NH-8/22/03-CS/ENGR/ITS

Contacts : Jim Alves-Foss, director CSDS, frincke@uidaho.edu, (208) 882-9170; Paul Oman, CS researcher, oman@cs.uidaho.edu, (208) 885-6899; Huba Leidenfrost, UI computer security analyst, huba@uidaho.edu, (208) 885-2126;Tony Opheim, associate director information technology, tony@uidaho.edu, (208) 885-2781; or Nancy Hilliard, University Communications, (208) 885-6567, hilliard@uidaho.edu

 

© 2006 Center for Secure and Dependable Systems