Microsoft Moves To Squash 'Friendly' WormMicrosoft Moves To Squash 'Friendly' Worm
Last week, <i>NewScientist</i> ran a story about Microsoft's researching how worms -- really, really effective worms -- could be used to disseminate software patches. Today, Microsoft seems to be backing away from the idea.
February 20, 2008
Last week, NewScientist ran a story about Microsoft's researching how worms -- really, really effective worms -- could be used to disseminate software patches. Today, Microsoft seems to be backing away from the idea.I'm all for radical research. And who isn't? Some of the greatest ideas probably come from labs where researchers are given the freedom to brainstorm openly and are constantly greenfielding new ideas, or new approaches to old problems. It's how we may wake up one day and read in the paper that the secrets to unlocking nuclear fusion as an energy source have been unraveled.
And maybe there is a place for "friendly worms" that we've yet to think of.
Or, maybe there isn't a place for them at all.
As far as I'm concerned, nothing should run on a PC without the owner's consent, and based upon the research published, that's exactly what Microsoft was working on.
This is an excerpt from the report, with a very hip title: Sampling Strategies for Epidemic-Style Information Dissemination:
"We consider epidemic-style information dissemination strategies that leverage the nonuniformity of host distribution over subnets (e.g., IP subnets) to optimize the information spread. Such epidemic-style strategies are based on random sampling of target hosts according to a sampling rule. In this paper, the objective is to optimize the information spread with respect to minimizing the total number of samplings to reach a target fraction of the host population." What could the use of this research be, other than to offensively disseminate "information" (aka worms) to systems that have refused to apply an update, for whatever reason? Biological epidemics tend to spread through unwilling hosts.
But all is well that ends well. For now, it seems Microsoft has no intent to "productize" the friendly worm:
"This project is basic research, and there are no current plans to incorporate this into Microsoft products," said Milan Vojnovic, a researcher at Microsoft Research Cambridge, in a statement e-mailed to InformationWeek.
Let's hope this worm of an idea stays in its hole.
Here is our post from last week.
About the Author(s)
You May Also Like
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023
What's In Your Cloud?Nov 30, 2023
Everything You Need to Know About DNS AttacksNov 30, 2023
Passwords Are Passe: Next Gen Authentication Addresses Today's Threats
How to Deploy Zero Trust for Remote Workforce Security
Concerns Mount Over Ransomware, Zero-Day Bugs, and AI-Enabled Malware
Everything You Need to Know About DNS Attacks
Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks