The University of Michigan is developing a rollback technology that allows administrators to track all transactions on a system, whether authorized or not, and reverse those transactions when required. The ReVirt technology has been under development by researchers for several months and is still way off completion but, according to Peter Chen, associate professor of electrical engineering with university, the technology offers a virtual time machine for company computer systems. “Not only can we turn back the clock on an attack to undo the damage, we can also go back to any point during the attack to observe exactly how the intruder breached the system,” he said. According to Chen, several commercial products can record all changes made to a hard drive, allowing users to restore their systems to a previous backup point. But, he said, none of these products allow system administrators to replay an intruder’s actions on a step-by-step basis. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.