Network World
Saturday, July 4, 2009
DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Are rootkits really all bad?

Settlement in Sony CD case resurrects rootkit debate.

When a security researcher late last year discovered Sony was using hidden software-cloaking and monitoring techniques to protect copyrights on its music compact discs, public backlash prompted lawsuits against the company and a debate ensued about using such “rootkits” in commercial software.

Related links
Obama's Cybersecurity Coordinator Has Broad Agenda 6/29/2009
Network shutdown bill faces changes, aide says 6/26/2009
Security agencies to combat cyber attacks, PM announces 6/26/2009
Powered by Inform

Ensuring you get pizza with sync tools
07/06/09
Here's the answer to missing files compromising your plans for pizza, beer and TV.

Apple may be exempt from China's Web filter mandate
07/03/09
Apple appears to be exempt from China's mandate that a controversial Internet filtering program be shipped with all computers sold in the country.

Satyam buyer does not get enough shares in public offer
07/03/09
Tech Mahindra may have to ask Satyam Computer Services for a preferential issues of shares to continue its bid to take over the troubled outsourcer.

The lawsuits wound down with a court-ordered settlement that has Sony BMG Music Entertainment offering $7.50 and a free album download to those who bought any of the 15 million rootkit-infested CDs it sold. But the broader rootkit debate seems far from over.

Opponents say rootkits should never be used because they introduce potential vulnerabilities and are deceptive, while others contend there can be a legitimate use for deep-stealth technology in both the enterprise and home.

The Electronic Frontier Foundation (EFF), which declared it was satisfied with the Sony settlement, is not among those envisioning a positive role for rootkits.

“I have yet to see a rootkit which did not raise security concerns, and am skeptical that there can be legitimate use of technologies that hide files from the user in an effort to thwart user control of their own computer,” says Kurt Opsahl, staff attorney at EFF.

Security expert Bruce Schneier, founder of managed security services firm Counterpane, is equally adamant.

“Can there be benevolent rootkits? That’s similar to the question of benevolent worms. The answer is ‘no’,” he says. “Rootkits use stealth to hide payloads, and that can cause problems. A user loses control with what’s going on in their machines.”