References
Papers quoted or referred to in the text
-
Aleph One, Smashing the Stack for Fun and Profit (=Phrack 49-14) (1996),
the canonical article on buffer overflow exploits,
http://phrack.org/show.php?p=49&a=14
-
eEye Security Alert AD20010618, IIS .ida vulnerability and exploit,
http://www.eeye.com/html/Research/Advisories/AD20010618.html
-
David Moore et al., Code Red, A Case Study on the Spread and Victims of an Internet Worm (2001),
www.caida.org/outreach/papers/2002/codered/codered.pdf
-
David Moore, Network Telescopes: Observing Small or Distant Security Events (2002),
http://www.caida.org/outreach/presentations/2002/usenix_sec/
-
David Moore et. al, The Spread of the Slammer/Sapphire Worm (2003),
http://www.silicondefense.com/research/slammer/
-
David Moore et al., Internet Quarantine: Requirements for Containing Self-Propagating Code, University of California, San Diego (2003),
http://www.cs.ucsd.edu/users/savage/papers/Infocom03.pdf
-
Gene Spafford, The Internet Worm Program: An Analysis (1988),
http://citeseer.nj.nec.com/spafford88internet.html
-
Stuart Stanniford, The Worm FAQ (2003),
http://www.networm.org/faq/
-
Staniford et al., How to 0wn the Internet in Your Spare Time (2003), a usenix paper on hypothetical new worms,
http://www.icir.org/vern/papers/cdc-usenix-sec02/
-
Weaver, Nick, Warhol Worms: The Potential for Very Fast Internet Plagues (2001),
http://www.cs.berkeley.edu/%7Enweaver/warhol.html
Recommended further reading
-
CAIDA, the Cooperative Association for Internet Data Analysis,
http://www.caida.org
-
Bruce Schneier, Crypto-Gram, a free monthly newsletter on various computer and sociological security issues,
http://www.counterpane.com/crypto-gram.html
-
The Bugtraq Mailing List, an important resource for security weakness
reports,
http://securityfocus.com/archive/1
-
CERT, the Computer Emergency Response Team,
http://www.cert.org/
-
The German "Bundesamt für Sicherheit in der
Informationstechnik" (Federal Office for Information Security),
http://www.bsi.de/english/index.htm