`Love Bug': A lesson, a warning

Vulnerability: The near-monopoly of Microsoft on the Internet can help spread a virus - but help disable it, too.

May 14, 2000|By Jim Nesbitt

WASHINGTON - The "Love Bug" computer virus and its copycat cousins, which wreaked havoc with Microsoft-based e-mail systems and Internet servers around the globe last week, underscore the vulnerability of a world increasingly online and dominated by a single software giant, critics say.

The very technological sameness that makes computers more accessible to consumers makes it easier for these malicious programs to spread like wildfire.

Taking advantage of a particular feature of Microsoft's Outlook e-mail program, the virus-generated flood of infected e-mail traffic shut down huge swaths of the Internet, forcing corporate and government users to go offline and cleanse their computer systems.

But it left systems and servers that don't use Microsoft programs relatively unscathed, placing another rhetorical brickbat in the arsenal of those who call for a breakup of the world's richest programming corporation.

Under the banner of technological diversity, these critics point out the danger of a global Internet ruled by a Microsoft "monoculture," a biological phrase that evokes images of natural selection and Darwin.

Here's the logic: Just as a diverse gene pool favors a life form's ability to adapt to adverse circumstances, so would a diverse set of operating systems make the world's computer users less vulnerable to cyberattack."That virus came so close to shutting down the whole Internet and that's only possible in a monoculture environment," said John Paul Moore, a Web developer in Austin, Texas. "Nobody has done more to undermine Internet standards than Microsoft has by trying to dominate this system. Get Microsoft out of the way and let the market happen."

But others who push technological diversity aren't sure that breaking up Microsoft would end the type of software vulnerabilities exploited by the creator or creators of the "Love Bug."

"It's really absolutely correct that when you have a single operating system and a system that is as widely distributed as Microsoft, and that operating system rather consistently and absolutely shows no concern about security, you're going to have these problems," said Adam Shostack, director of technology at Zero-Knowledge Systems, Inc., a Montreal-based firm specializing in Internet privacy programs. "Diversity helps. It makes it much harder to have the breadth of impact you've just seen."

Shostack, however, thinks the main problem is Microsoft's failure to place a priority on security - a failing shared by other software developers, including those who write for the MacIntosh operating system. This failure is linked to each system's original purpose.

Both Microsoft and Mac programmers have a history of writing for individual computer users and are unaccustomed to thinking about security issues. In particular, Microsoft products emphasize automatic features that make them easier for customers to use, but that may have unintended vulnerabilities.

On the other hand, programmers for Unix - originally used primarily by universities, corporations and government - write code in a language rooted in systems with multiple operators and a high need for security.

Unix and its descendants, most notably the Linux operating system, have built-in security features. These include a hierarchy of access that limits those who can get into the guts of the program, and features that allow the user to monitor sensitive files for signs of tampering.

The "Love Bug" virus took advantage of an automation feature in Microsoft's Outlook. It allows users to send messages while working from a different application , such as a word processing function. And it allows various Microsoft business applications to talk to each other.

In other words, the system is set up to accept commands and messages from outside sources. But while that gives users the convenience of not having to jump back and forth to fetch or send e-mail, it provides an easy opening for a computer virus.

It is also an opening that is easy to close, said Richard Smith, a retired software executive and white-hat hacker from Brookline, Mass.

Smith, who spends his days chasing down authors of malicious programs like the infamous Melissa virus, said it would be a simple matter for Microsoft to ship Outlook with this automation feature turned off instead of turned on. Most users don't know it's there; someone sophisticated enough to use it is sophisticated enough to turn it on.

For Smith, the Microsoft monoculture plays into a powerfully related issue - the rapid spread of the Internet and the changing pattern of online use.

Ten years ago, only institutions like universities were online virtually all the time; now, particularly because of the rise of broadband Internet access, more individual users have their computers wired for longer stretches of time.

Baltimore Sun Articles
Please note the green-lined linked article text has been applied commercially without any involvement from our newsroom editors, reporters or any other editorial staff.