
                   My theory of Denial of Service -fejed
   
   I'm writing on the topic of electronic denial of service, here. No,
   not simple attacks that can be executed in a few seconds and crash a
   computer almost instantaneously or anything like that, but a rather
   more deeply thought out possibility. We all know what Virus Scanners
   do, don't we? I'm sure a few people who read this will have no clue,
   so I will explain a little. Virus scanners search though binaries
   usually, or as an option, every file that is accessible by the virus
   scanner, looking for a specific signature that is common to every
   strand of the virus, which it keeps in a database that comes with the
   Virus Scanner. Some Anti-Virus software also scans for signatures of
   programs that are often misused, say a program that is used to create
   a small attack against a specific computer. The user is alerted that
   the misused program is a virus so he/she thinks its a virus and
   deletes the file.
   
                           Core of the situation.
   
   Lets say someone downloads the source code (instructions that are
   interpreted by the computer to produce programs) to every known virus
   that exists that is compatible with ms-dos and/or windows (x86
   specific) that he can get his hands on, even all early ones, from the
   early 80's. Then he compiles and links them with the same linker (gets
   the computer to interpret the instructions) to make things simpler for
   himself. He then obtains a program that compresses programs
   (compresses the original file smaller using a compression algorithm)
   or uses his elite hacking skills to compose one himself which
   generates random, unique and non recurring signatures for binaries on
   the fly, then he can unleash the new engineered viruses into
   cyberspace.
   
             Methods for delivery into the unsuspecting world.
   
     * Penetrate a major software company's site (or something else large
       which distributes trusted software), use their software as the
       delivery device by binding the new strain of viruses to the
       trusted software. In doing this, everyday consumers would use the
       software with a false sense of security not knowing that they are
       distributing viruses because of their blind trust in what they do
       not understand well or assume is secure.
       
     * Penetrate computers that are hosting illegal software which is
       accessible by those with internet access, then bind viruses to
       each piece of hosted software, then let them spread.
       
     * Submit them to Anti-Virus Companies. These firms usually ask for
       people to send them new viruses that they have found that are not
       yet detectable by their current software.
       
                 Where is the Denial of Service occurring?
   
   Once new strands of viruses are made and released into the wild a
   slight denial of service will be created against everyone that uses
   anti-virus software, because the software has to analyse each file a
   lot more due to the number patterns it has to look for.
   
   The signatures of viruses have to be stored and distributed with the
   Anti-Virus software in a database. If the attack of new viruses were
   to continue at a very fast rate, that would tie up a lot of resources.
   Each scan would ultimately take more time and more hard disk space
   would be consumed due to signatures being stored in a database locally
   (if not locally then across networks), meaning more data has to be
   transferred to be read. These circumstances would become more severe
   if the attack was continued.
   
   Technology advances as time goes on, but the capacity to utilise its
   full potential does not advance at the same rate.
   
                           Where is the problem?
   
   The problem is mainly Microsoft. The operating systems Microsoft
   Windows and Microsoft-Dos exhibit this problem. This article suggests
   that there is sufficient power to bring most x86 Windows 95/98 MS Dos
   based operating systems to their knees.
   
   If what I speak of was put into effect then scanning for simple
   viruses would be an enormous task or even prove impossible. Due to the
   sheer size of the database and lack of resources, the time needed to
   scan for the offending viruses increases and the chances of the virus
   stopping the anti-viral program would be higher. If such a thing was
   done, then I'm sure people would be pushed to use operating systems
   based on UNIX, such as Linux, due to their high levels of security.
   Or, if not that, be so afraid that they would not even dare turn on
   their computers...
