A precise and exhaustive description of different types of malware from three different points of view, namely the theoretical fundamentals of computer virology, algorithmic and practical aspects of viruses and their potential applications to various areas.

Our Internet-connected society increasingly relies on computers. As a result, attacks on computers from malicious software have never been a bigger concern. Computer Viruses and Malware draws together hundreds of sources to provide an unprecedented view of malicious software and its countermeasures. This book discusses both the technical and human factors involved in computer viruses, worms, and anti-virus software. It also looks at the application of malicious software to computer crime and information warfare. Computer Viruses and Malware is designed for a professional audience composed of researchers and practitioners in industry. This book is also suitable as a secondary text for advanced-level students in computer science.

Symantec's chief antivirus researcher has written the definitive guide to contemporary virus threats, defense techniques, and analysis tools. Unlike most books on computer viruses, The Art of Computer Virus Research and Defense is a reference written strictly for white hats: IT and security professionals responsible for protecting their organizations against malware. Peter Szor systematically covers everything you need to know, including virus behavior and classification, protection strategies, antivirus and worm-blocking techniques, and much more. Szor presents the state-of-the-art in both malware and protection, providing the full technical detail that professionals need to handle increasingly complex attacks. Along the way, he provides extensive information on code metamorphism and other emerging techniques, so you can anticipate and prepare for future threats. Szor also offers the most thorough and practical primer on virus analysis ever published—addressing everything from creating your own personal laboratory to automating the analysis process. This book's coverage includes Discovering how malicious code attacks on a variety of platforms Classifying malware strategies for infection, in-memory operation, self-protection, payload delivery, exploitation, and more Identifying and responding to code obfuscation threats: encrypted, polymorphic, and metamorphic Mastering empirical methods for analyzing malicious code—and what to do with what you learn Reverse-engineering malicious code with disassemblers, debuggers, emulators, and virtual machines Implementing technical defenses: scanning, code emulation, disinfection, inoculation, integrity checking, sandboxing, honeypots, behavior blocking, and much more Using worm blocking, host-based intrusion prevention, and network-level defense strategies

This book presents the tutorial lectures given by leading experts in the area at the IFIP WG 7.3 International Symposium on Computer Modeling, Measurement and Evaluation, Performance 2002, held in Rome, Italy in September 2002. The survey papers presented are devoted to theoretical and methodological advances in performance and reliability evaluation as well as new perspectives in the major application fields. Modeling and verification issues, solution methods, workload characterization, and benchmarking are addressed from the methodological point of view. Among the applications dealt with are hardware and software architectures, wired and wireless networks, grid environments, Web services, and real-time voice and video processing. This book is intended to serve as a state-of-the-art survey and reference for students, scientists, and engineers active in the area of performance and reliability evaluation.

Here is an outstanding opportunity to learn about computer viruses from the internationally acclaimed pioneer in the field who actually coined the phrase "computer virus." This new edition of Cohen's classic work has been updated and expanded to nearly double its original size and now includes entirely new chapters on LAN viruses, international viruses, and good viruses (including code). As entertaining as it is thorough, the text is enlivened by Cohen's down-to-earth wit and his many fascinating anecdotes and heretofore unpublished historical facts about viruses. Both broad in its coverage and deep in its consideration, it includes dozens of lucid explanations and examples that amicably guide the reader through the complex, often convoluted subject matter. Hailed as a tour de force, Cohen's discussion of defensive strategies reveals many of the stumbling blocks that often trip readers up.

This is the must-have book for a must-know field. Today, general security knowledge is mandatory, and, if you who need to understand the fundamentals, Computer Security Basics 2nd Edition is the book to consult. The new edition builds on the well-established principles developed in the original edition and thoroughly updates that core knowledge. For anyone involved with computer security, including security administrators, system administrators, developers, and IT managers, Computer Security Basics 2nd Edition offers a clear overview of the security concepts you need to know, including access controls, malicious software, security policy, cryptography, biometrics, as well as government regulations and standards. This handbook describes complicated concepts such as trusted systems, encryption, and mandatory access control in simple terms. It tells you what you need to know to understand the basics of computer security, and it will help you persuade your employees to practice safe computing. Topics include: Computer security concepts Security breaches, such as viruses and other malicious programs Access controls Security policy Web attacks Communications and network security Encryption Physical security and biometrics Wireless network security Computer security and requirements of the Orange Book OSI Model and TEMPEST

This book constitutes the thoroughly refereed post-proceedings of the Second Mext-NSF-JSPS Interntional Symposium on Software Security, ISSS 2003, held in Tokyo, Japan in November 2003. The 18 revised full invited and selected papers presented were carefully reviewed and improved for inclusion in the book. The papers are organized in topical sections on analysis of protocols and cryptography, verification of security properties, safe implementation of programming languages, secure execution environments, and secure systems and security management.