New methods that organisations and individuals can adopt for free to protect themselves from malicious internet attacks were unveiled today at the 20th annual conference of first, the forum of internet response and security teams.
Beginning today anyone can access the research and methodologies devised by two winning teams in a groundbreaking competition organised jointly by first and its affiliate and major conference sponsor cert coordination centre, the software engineering institute cert program in pittsburgh, pa.
As internet criminals and vandals devise ever-more ingenious ways to entrap their victims, the top body of work, from twncert, chinese taipei, subjected a mass of attack attempts to rigorous analysis to identify which were the most persuasive.
The study covered a range of scams from phishing attempts to raid bank accounts to unsolicited pornography which lures people onto websites where pc's and networks get corrupted.
By using twncert's materials, internet users can learn what the scams look like and how they can be avoided, and isp's and organisations can protect, instruct and warn clients and staff.
The second-placed winner, krcert/cc from the republic of korea, analysed sources of spam (unsolicited email) to establish on a database the most likely origins by location and ip address so that they can be blocked.
The challenge set by first and cert coordination centre was to submit best practice research and methodology under the banner "protect", reflecting the first phase of the security process.
In 2009 and the two subsequent years new challenges will be set to discover best practices in the next three phases: "detect", "respond" and "sustain".
"we were profoundly impressed with the high quality of the submissions from the teams who responded to our challenge," said jeff carpenter [carpenter], cert coordination centre technical manager, who chaired the judging panel.
"we are proud to make this work available worldwide and free as part of our joint mission with first to improve internet security however and wherever we can."
Twncert's prize was $5000, and krcert/cc korea won $2500.