Zero-day exploits: Consider the OS

Networking Technology Update This newsletter is sponsored by Gateway Virtual Server Management: Weighing the options Learn about an array of exciting new time-saving tools that make it possible to manage virtual servers in a similar way as physical servers by watching the latest Network World Editorial Perspectives Webcast. Click here to watch! Networking Technology Update, 08/06/07 Zero-day exploits: Consider the OS By Mark Zielinski Attackers wielding zero-day exploits are one of the most significant threats facing enterprise networks today. While plenty of vendors promote zero-day protection mechanisms, if they don’t address the entire operating system, they leave the door open for attack. Get more out of your IT dollar Business Services Management lets you get more out of your IT investments by aligning business goals and your core infrastructure. Network World Editor-in-Chief John Dix and IDC Research Manager Stephen Elliot examine BSMs benefits and how enterprises are starting to take advantage of this strategy. Attend now! Today’s operating systems are designed to provide varying layers of access to resources. Hierarchical protection domains — often referred to as privileged rings — protect the operating system from faults and general instability. Arranged from most privileged or most trusted (usually zero) to least privileged or least trusted (usually the highest number), these domains provide the ability to enforce security in the operating system. Applications execute in the least trusted or least privileged domain (also known as user space), while the operating system executes in the most trusted or most privileged domain (also known as kernel space). This separation enables the operating system to distribute resources and shield against undesirable behaviors that might otherwise have a rippling effect. Without this barrier, viruses and other malicious software could easily replicate across each process and run rampant. Protected behind the barrier, the operating system requires each application to request permission to access various system resources or to have more privileged operations carried out on its behalf. Microsoft and a host of security vendors have invested a tremendous amount of time and effort into developing enhanced security features to protect customers. These enhancements typically deal with kernel space, monitoring the resource requests made by applications in user space. The enhancements, for example, prevent write access to critical structures in memory, monitor inbound and outbound packets for known exploits, and analyze application behavior to ensure that a word-processing application isn’t suddenly and inexplicably sending out confidential data. For more on this story, please click here. Editor's Note: We regret to let you know that we will no longer be publishing the Networking Technology Update newsletter. The last newsletter will be mailed on Aug. 8. To keep you abreast of network technology issues, starting the week of Aug. 13, you will begin receiving the Network/Systems Management newsletter, which mails every Monday and Wednesday. We thank you for supporting Network World newsletters.

TODAY'S MOST-READ STORIES: 1. Do Not Call Registry gets wake-up call 2. IBM saves $250M with Linux-run mainframes 3. NAC alternatives hit the mark 4. Cisco muffles Linksys death knell 5. Nortel lands huge $300M VoIP win 6. Hogwarts IT director quits 7. Online gamers' dirty little secrets exposed 8. Massachusetts adopts Open XML 9. Wireless LAN best practices 10. Forget your PIN? Use your face MOST DOWNLOADED PODCAST: Twisted Pair: One year later, we're still wasting time

Contact the author: Zielinski is a security engineer and member of Arbor Networks’ Security Engineering & Response Team. This newsletter is sponsored by Gateway Virtual Server Management: Weighing the options Learn about an array of exciting new time-saving tools that make it possible to manage virtual servers in a similar way as physical servers by watching the latest Network World Editorial Perspectives Webcast. Click here to watch! BONUS FEATURE IT PRODUCT RESEARCH AT YOUR FINGERTIPS Get detailed information on thousands of products, conduct side-by-side comparisons and read product test and review results with Network World’s IT Buyer’s Guides. Find the best solution faster than ever with over 100 distinct categories across the security, storage, management, wireless, infrastructure and convergence markets. Click here for details. PRINT SUBSCRIPTIONS AVAILABLE You've got the technology snapshot of your choice delivered to your inbox each day. Extend your knowledge with a print subscription to the Network World newsweekly, Apply here today. International subscribers, click here. SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here. This message was sent to: networking.world@gmail.com. Please use this address when modifying your subscription. Advertising information: Write to Associate Publisher Online Susan Cardoza Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 Copyright Network World, Inc., 2007