Indiana University and Oak Ridge National Laboratory researchers have developed a method for finding where malicious systems originate. The researchers performed a statistical analysis of Internet Protocol (IP) addresses from blacklists to identify Internet service providers, hosting services, or other autonomous systems with high levels of blacklisted IP addresses. “We wanted to be able to say if a particular network is doing a good job of cleaning up its machines,” says Oak Ridge researcher Craig Shue. The researchers found that some autonomous systems have more than 80 percent of their IP addresses blacklisted. Three U.S.-based hosting providers accounted for more than six percent of one of the blacklists, a disproportionately large percentage for the size of the systems. “This indicates that some [autonomous systems] have either too lax a security policy or may be intentionally harboring cybercrime,” the researchers say. The next step is to evaluate the quality of the blacklist data.
View Full Article
For More Information Visit: http://www.cpccci.com
This entry was posted on Wednesday, December 1st, 2010 at 7:29 pm and is filed under CS, Web Design and web optimization. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.