Why Virus Writers are Useful

man_of_mr_e writes "Security site Zone-h.org has an interview with Professor Samuel D. Forrester, one of the worlds leading immunologists. In this interview he asserts that immunity is built by infection, and without it you would have a much weaker ecosystem. "

Absolutely!!!

[eyegor]

Plus, it REALLY helps the bottom line of Symantec and McAfee.

What about evolution..

How about Survival of the fittest... in which case MS hasn't been doing so good (and is trying to drag the other OS's down in the process).

So by extension...

[bc90021]

...criminals are useful because of the increase in security?

I understand the point, but while response to a negative may bring about a better positive, not having the negative in the first place would, of course, be much better. But then, it's not a perfect world. ;)

Re:So by extension...

[Acidic_Diarrhea]

Yes, criminals are useful. If America had no criminals in it there would be no need for a police force. Now, when a criminal does arrive from some far off land, no one is prepared for it. Basically, not having the negative (as you put it) is an unrealistic view of the world. You've got to assume that at some point, a criminal will exist in the world AND a virus will be released into the wild. Now, negatives such as all oxygen in a room suddenly moving to the corner of the room through random movements is a negative but it is not a likely negative.

In regards to viruses being good for security, I am soon expecting virus writers to plan for the inevitable clean fixes from Symantec and such and, using predictive behavior, ensure that a user can't clean his or her system.

Re:So by extension...

[fucksl4shd0t]

not having the negative in the first place would, of course, be much better.

I have to disagree with you. :)

First, in the case of virii and bacteria (forgetting for the moment that 95% of bacteria are beneficial, but anti-bacterial soap doesn't know that), our bodies do get stronger fighting them. Without them, would our bodies be strong enough to fight off other things? How much of our body's overall strength does the ability to fight disease and practice fighting it actually contribute to? Keep in mind that some diseases (most notably cancer) are not caused by either virus or bacteria, yet our centuries of medical research fighting vrii and bacteria have given us a pretty good start to fighting cancer. Without that research? Without that understanding? Well, think: Cancer in the 19th century. :)

In a more general situation, is it in your philosophy that it's possible to appreciate the positive without at least an understanding of the negative? It has been my subjective experience, as well as my objective oberservation of what amounts to a less than perfect statistical universe, that people don't fully appreciate the positive things in their lives without actually experiencing the corresponding negatives. It seems like good lacks definition without evil providing a frame of reference. How can you know how good you have it if it's not even possible to have it any other way?

Not too bad of an idea

[Havokmon]

Think about it.. if there was never a virus, and never an 'Internet Worm' in the 80's, we may not be patching our systems.

And when someone DOES decide to release a 'Melissa', we're all screwed, because we're all vulnerable.

Re:Not too bad of an idea

[HiThere]

The real benefit is that most of the virus releases are "essentially" harmless. Annoying, but not *really* damaging. So the fixes are done, and something viscious can't get in through the same hole.

Just try to imagine how bad things could be if someone set out to really damage your computer.

Let's pick an example, and say that someone released a virus that created a spoof of the MS Updater. Now people aren't surprised that it's engaging in horrendous uploads and downloads. And their computers could easily download all non-system files to the hacker (he'd better be off-shore, and working through cut-outs!). And it could download *anything* as a system fix. And get people to license it's installation on their system. It might well be that only the initial install would be illegal. Everything else would have been authorized through the EULA. With sufficient cleverness, even the initial installation might be EULA authorized. In that case would any laws be violated? No matter WHAT was done? I'm sure that an EULA could be created that, via obfuscated text, authorized the program to transfer all funds from your bank account to another bank account. And to max out your credit cards. (Fraud? What fraud? It said it clearly right there in the agreement!)

Of course to make the legal agreements binding one would need to provide some tender. Perhaps some png files? Of a sort that the person wouldn't want to be caught with? I understand that those are often exchanged for credit card information. It's just that this time it wouldn't be intentionaly done...perhaps. Certainly he wouldn't know the bill that was coming due.

Wouldn't that be a lot more effective than a simple "deltree C:". And they wouldn't even know that they'd been penetrated until they went to the bank. Even then they wouldn't know *why* their account was drained.

in all reality

[greechneb]

I view them as job security (so does he I am sure).

After every big virus that comes out, I get at least 10 calls saying I think I have this virus. Of course they will pay me, but never will pay for antivirus software though! They think it is a rip-off

There are good comparisons, and bad ones

[Liselle]

Comparing computer viruses to the biological sort is a BAD one. Firstly, you have to make a distinction between worms and viruses and such. Secondly, we don't infect new computers with lesser versions of MBLASTER, we patch the vulnerablilty.

Re:So if I understand well...

[LBArrettAnderson]

yes, he is. i don't understand why this is even news, we don't need a professor telling us that the best way to make systems more secure is to learn of the insecure parts of the system. If a virus doesn't exploit an insecurity, a hacker will; and often the results of that are far, far worse.

Horseshit

[Robber+Baron]

Nice troll...even managed to get it posted as a Slashdot article!

That may be true with a biological system, but it DOES NOT APPLY to electronics. The truth of the matter is, virus writers do nothing but cause havoc, and cost money. So I have a box that's unsecured...so what? That's MY business, NOT yours! Where does it say that you now have the right to fuck with it? Do you somehow think that by buggering it up, you're "helping" me? No, how you help is by leaving it the hell alone! What virus writers and crackers and kiddies do is the moral equivalent of wandering through a neighbourhood and trying everyone's door to see if it's unlocked and then stealing from those whose doors aren't locked. Either that or spraying grafitti or trashing the place. They are not heroes...they aren't "Morpheus" fighting against the "evil machines", they are common thieves and vandals and should be viewed as such and treated accordingly.

Re:Horseshit

[PhxBlue]

Where does it say that you now have the right to fuck with it? Do you somehow think that by buggering it up, you're "helping" me? No, how you help is by leaving it the hell alone!

All true; but have you considered that securing your system, like securing your house, is the best method of helping yourself? No, others don't have the right to break into your system; but if you don't care about it enough to at least make it inconvenient for hackers and thieves, don't expect anyone else to shed a tear for you when you get owned.

If it weren't for viruses and blackhats...

[cowbutt]

...the situation would be worse not better. And I say this as a white-hatted security consultant.

I've reluctantly come to appreciate the role that noisy blackhats and virus authors play in getting organisations to improve their information security infrastructure. If it weren't for them, I feel there would be a thriving underground economy of industrial espionage and personal information theft because it would be so easy. At least with the constant pressure applied by viruses and blackhats, the most gaping security vulnerabilities tend to get fixed, sooner or later (even if a few organisations end up being made examples to the rest).

Personally, I don't really care about catching virus authors and blackhats. I just care about keeping them out of the machines and networks I've been paid to care about.

--

Ebola is worse than a cold

[yerricde]

We need to have viruses that just give our computers a cold, in order to build up defenses against the electronic equivalent of Ebola.

Re:Circular logic?

[nanojath]

Well, look at it this way - if we didn't have the parade of sort of hokey viruses and worms being (usually fairly badly) written by, essentially, hobbyists, then our systems would be wide open to a couple of things -

- Well written viruses properly designed for maximum impact, stealth and damage, propagated by terrorists or other people looking to take advantage of economic/information system instability, and

Security holes not noticed or taken seriously being used in a less random way that doesn't broadcast itself in an obvious way - thus giving people with criminal intentions a lot of access to computer power and the ability to use it stealthily.

Viruses force people to notice and take security holes seriously.

Put aside the morality for a second.

[s20451]

I think we can all agree that cracking is immoral. But put that aside for a second. The fact that cracking is simply possible means that someone will probably do it. Leaving your box open for attacks, which could in turn compromise other machines, simply because you're depending on the moral behaviour of someone else, is irresponsible.

Furthermore, I disagree that only damage can result. By assuming adverse behaviour, the result is a much stronger network, in which one malicious or malfunctioning node doesn't bring down service for everyone. Better understanding of network dynamics and network protection results from attacks, regardless of how much we hate them.

old topic

[514x0r]

there is nothing new about this idea; it's bean around for years. taken out of context, however, it leads people to the erroneous conclusion that if a bunch of virii are let loose on the net, all the systems that survive will somhow improve. to extend the bio-system analogy, that would be like dropping anthrax in time-square, figuring that whoever made it out would be better equipped to survive an attack. in reality, however, bio-systems are strengthened through either eons of evolution, or limited exposure to weakened strains. to extend this analogy, having a bunch of OS developers sitting in an isolated area studying the effects of a virus on a discreete system, then applying what was learned to the next itteration would help. thinking that letting worms loose to imporve the net as a whole is pure hooey.

Re:So if I understand well...

[nocomment]

" '..."They should stop, somebody stop them!" I hear all the time but... is this right?' "

Of course it's right. Just because the virus writers do play a role in the "ecosystem" of the Internet, doesn't mean that they shouldn't be prosecuted for it.

They knew in the middle ages that the black plague was being spread by the rats. Some towns cleaned up the sewers, and the water systems and killed off as many rats as they could find, those towns did relatively well during the plague. There were other towns that were convinced that the plague was sent by God (and maybe it was) and refused to clean or do anything about it, and those towns were wiped from the map.

The plague played an important part in our development as people. In fact bubonic plage is still being spread and caught by people. The results are very minor because most of us that have european ancenstry survived because our genes were stronger...but does that mean the water systems shouldn't have been cleaned by the few towns that did it? Absolutely not.

Re:Lame Analogy

[biggj]

Yes, but most people go to the Doctor and get some sort of "3rd party" shot or pill. Really, what's the differece.

I think that in either case it is either flaws in the origional design or new technology (bio or otherwise) which leave the "host" open to an attack.

--J

No

[Robber+Baron]

I reject the notion that my inaction would make me bear any sort of responsibility for someone else's criminal actions. That's like saying a woman who dresses a certain way deserves to get raped.

Of course, that being said, I am not going to make it easy for them, not because of any sort of ethical obbligation, but rather because I don't want to subject myself to the inconvenience.