ALU Bell Labs: Network Behavior Analysis Helps to Detect Malware Infection

 

A recent article by Jin Cao (picture), Laurent Clevy, Lawrence Menten all from Bell Labs, Alcatel-Lucent discusses "Network detection techniques offer an alternative to existing tools such as antivirus software and personal firewalls. This article will review these challenges and the unique approaches by Alcatel-Lucent Bell Labs researchers for using network behavior analysis to detect malware infection".

See "Security: On the Trail of the Elusive Botnet" - here.

"Current detection methods focus on malware detection software that scans individual computers. However, antivirus software and personal firewalls have proven inadequate. Botnet authors thoroughly test their creations to evade detection, but some malware simply disables these protection mechanisms ... Alcatel-Lucent Bell Labs researchers are working closely with security and product development teams to develop a broad set of network-based botnet detection techniques that can be incorporated into products. Three of the techniques are:

• Offline data mining and statistical analysis
• Behavioral analysis of network traffic at the endpoint
• Analysis of DNS packets at the network perimeter"

See a related post on implementation of DDoS, Botnets and infected subscribers detection - here (such as the chart below, from Allot Communications, demonstrates).

Verizon Appeals vs. FCC Net Neutrality

      

Although the FCC pretty much adopted the Google-Verizon [wireless] compromise (here) for the new Net Neutrality rules (here), the carrier is still not happy with the outcome.

Verizon announced that "on Thursday (Jan. 20) [it] filed an appeal in the United States Court of Appeals for the District of Columbia Circuit, challenging the Federal Communications Commission's Report and Order on rules dealing with the issue of net neutrality".

See "Verizon Files Appeal in Federal Court Regarding FCC Net Neutrality Order" - here

Michael E. Glover, Verizon senior VP and deputy general counsel said  "..Today's filing is the result of a careful review of the FCC's order. We are deeply concerned by the FCC's assertion of broad authority for sweeping new regulation of broadband networks and the Internet itself.  We believe this assertion of authority goes well beyond any authority provided by Congress, and creates uncertainty for the communications industry, innovators, investors and consumers."