发布求助
文献互助 智能选刊 最新文献

2012 International Conference on Cyber Security最新文献

筛选
英文 中文
An Adaptive Honeypot System to Capture IPv6 Address Scans 一个自适应蜜罐系统捕获IPv6地址扫描
2012 International Conference on Cyber Security Pub Date : 2012-12-14 DOI: 10.1109/CyberSecurity.2012.28
Kazuya Kishimoto, K. Ohira, Yukiko Yamaguchi, H. Yamaki, H. Takakura
{"title":"An Adaptive Honeypot System to Capture IPv6 Address Scans","authors":"Kazuya Kishimoto, K. Ohira, Yukiko Yamaguchi, H. Yamaki, H. Takakura","doi":"10.1109/CyberSecurity.2012.28","DOIUrl":"https://doi.org/10.1109/CyberSecurity.2012.28","url":null,"abstract":"The vastness of IPv6 address space and rapid spread of its deployment attract us to usage of IPv6 network. Various types of devices, including embedded systems, are ready to use IPv6 addresses and some of them have already been connected directly to the Internet. Such situation entices attackers to change their strategies and choose the embedded systems as their targets. We have to deploy various types of honey pots on IPv6 network to trace his activities and infer his objective. Huge address space and wide variety of devices, however, suggest the limitation of conventional honey pots. In this paper, we propose a system that dynamically assigns an address to a honey pot by detecting an access to an unassigned address. We also present our strategy against IPv6 address scans by making honey pots collaborate each other.","PeriodicalId":162858,"journal":{"name":"2012 International Conference on Cyber Security","volume":"21 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2012-12-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"125661827","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 14
Crime Pays If You Are Just an Average Hacker 如果你只是一个普通的黑客,犯罪是有报应的
2012 International Conference on Cyber Security Pub Date : 2012-12-14 DOI: 10.1109/CyberSecurity.2012.15
W. Shim, Luca Allodi, F. Massacci
{"title":"Crime Pays If You Are Just an Average Hacker","authors":"W. Shim, Luca Allodi, F. Massacci","doi":"10.1109/CyberSecurity.2012.15","DOIUrl":"https://doi.org/10.1109/CyberSecurity.2012.15","url":null,"abstract":"This study investigates the effects of incentive and deterrence strategies that might turn a security researcher into a malware writer, or vice versa. By using a simple game theoretic model, we illustrate how hackers maximize their expected utility. Furthermore, our simulation models show how hackers' malicious activities are affected by changes in strategies employed by defenders. Our results indicate that, despite the manipulation of strategies, average-skilled hackers have incentives to participate in malicious activities, whereas highly skilled hackers who have high probability of getting maximum payoffs from legal activities are more likely to participate in legitimate ones. Lastly, according on our findings, reactive strategies are more effective than proactive strategies in discouraging hackers' malicious activities.","PeriodicalId":162858,"journal":{"name":"2012 International Conference on Cyber Security","volume":"42 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2012-12-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"129182141","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 11
Security and Integrity Analysis Using Indicators 使用指标的安全性和完整性分析
2012 International Conference on Cyber Security Pub Date : 2012-12-14 DOI: 10.1109/CyberSecurity.2012.23
S. Hassan, R. Guha
{"title":"Security and Integrity Analysis Using Indicators","authors":"S. Hassan, R. Guha","doi":"10.1109/CyberSecurity.2012.23","DOIUrl":"https://doi.org/10.1109/CyberSecurity.2012.23","url":null,"abstract":"Computer systems today are under constant attack by adversaries that are looking for opportunistic ways to gain access and exfiltrate data, cause disruption or chaos, or leverage the computer for their own use. Whatever the motives are, these attacks typically occur not just against one device but a series of computer systems that relate in some manner (i.e. banking systems). Being able to understand the attackers tactics, techniques, or procedures (TTP) and reuse the knowledge against other systems becomes critical to help detect the attackers movement, where they may have conducted other security breaches, and to help play catch-up and close down the attacker from persistent threat. Using Indicators as a way to define components of the various TTPs can act as a tool to help share intelligence. A simulation was conducted demonstrating the indicator lifecycle in which a malware binary was created to perform a https command and control (C2). Using this simulation, it was possible to demonstrate how indicators were produced and defined after system analysis as well as how they could be consumed on other systems searching for the same TTP.","PeriodicalId":162858,"journal":{"name":"2012 International Conference on Cyber Security","volume":"129 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2012-12-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"122946477","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 2
A Sender-Centric Approach to Detecting Phishing Emails 以发件人为中心的网络钓鱼电子邮件检测方法
2012 International Conference on Cyber Security Pub Date : 2012-12-14 DOI: 10.1109/CyberSecurity.2012.11
Fernando Sanchez, Z. Duan
{"title":"A Sender-Centric Approach to Detecting Phishing Emails","authors":"Fernando Sanchez, Z. Duan","doi":"10.1109/CyberSecurity.2012.11","DOIUrl":"https://doi.org/10.1109/CyberSecurity.2012.11","url":null,"abstract":"Email-based online phishing is a critical security threat on the Internet. Although phishers have great flexibility in manipulating both the content and structure of phishing emails, phishers have much less flexibility in completely concealing the sender information of a phishing message. Importantly, such sender information is often inconsistent with the target institution of a phishing email. Based on this observation, in this paper we advocate and develop a sender-centric approach to detecting phishing emails by focusing on the sender information of a message instead of the content or structure of the message. Our evaluation studies based on real-world email traces show that the sender-centric approach is a feasible and effective method in detecting phishing emails. For example, using an email trace containing both phishing and legitimate messages, we show that the sender-centric approach can detect 98.7% of phishing emails while correctly classifying all legitimate messages.","PeriodicalId":162858,"journal":{"name":"2012 International Conference on Cyber Security","volume":"6 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2012-12-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"123639202","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 17
CTrust: A Framework for Secure and Trustworthy Application Execution in Cloud Computing CTrust:云计算中安全可靠的应用程序执行框架
2012 International Conference on Cyber Security Pub Date : 2012-12-14 DOI: 10.1109/CyberSecurity.2012.10
Satyajeet Nimgaonkar, Srujan Kotikela, M. Gomathisankaran
{"title":"CTrust: A Framework for Secure and Trustworthy Application Execution in Cloud Computing","authors":"Satyajeet Nimgaonkar, Srujan Kotikela, M. Gomathisankaran","doi":"10.1109/CyberSecurity.2012.10","DOIUrl":"https://doi.org/10.1109/CyberSecurity.2012.10","url":null,"abstract":"Cloud computing is a model that envisions ubiquitous access to a shared pool of configurable resources such as compute, storage, network, and software. Currently ecommerce, on-line auctioning companies, travel agencies and other such services use clouds, primarily because of the elasticity of cloud resources. While cloud computing allows consolidation of resources, thus enabling new applications, it has several security and privacy concerns. This paper presents the CTrust framework that addresses the security gap in cloud computing by combining the power of virtualization technology with the design of secure processor architectures. The fundamental building block of the CTrust framework is the Secure Hyper visor Framework - SecHYPE. It is a modified hyper visor that incorporates secure processor architectures and provides root of trust to user applications running in the cloud. The paper presents a detailed attack model and prototype implementation of the CTrust framework.","PeriodicalId":162858,"journal":{"name":"2012 International Conference on Cyber Security","volume":"8 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2012-12-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132726262","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 9
WAVES: Automatic Synthesis of Client-Side Validation Code for Web Applications 为Web应用程序自动合成客户端验证代码
2012 International Conference on Cyber Security Pub Date : 2012-12-14 DOI: 10.1109/CyberSecurity.2012.13
Nazari Skrupsky, M. Monshizadeh, Prithvi Bisht, Timothy L. Hinrichs, V. Venkatakrishnan, L. Zuck
{"title":"WAVES: Automatic Synthesis of Client-Side Validation Code for Web Applications","authors":"Nazari Skrupsky, M. Monshizadeh, Prithvi Bisht, Timothy L. Hinrichs, V. Venkatakrishnan, L. Zuck","doi":"10.1109/CyberSecurity.2012.13","DOIUrl":"https://doi.org/10.1109/CyberSecurity.2012.13","url":null,"abstract":"The current practice of Web application development treats the client and server components of the application as two separate pieces of software. Each component is written independently, usually in distinct programming languages and development platforms - a process known to be prone to errors when the client and server share application logic. When the client and server are out of sync, an âimpedance mismatchâ occurs, often leading to software vulnerabilities as demonstrated by recent work on parameter tampering. This paper outlines the groundwork for a new software development approach, WAVES, where developers author the server-side application logic and rely on tools to automatically synthesize the corresponding client-side application logic. WAVES employs program analysis techniques to extract a logical specification from the server, from which it synthesizes client code. WAVES also synthesizes interactive client interfaces that include asynchronous callbacks (AJAX) whose performance and coverage rival that of manually written clients while ensuring no new security vulnerabilities are introduced. The effectiveness of WAVES is demonstrated and evaluated on three real-world web applications.","PeriodicalId":162858,"journal":{"name":"2012 International Conference on Cyber Security","volume":"9 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2012-12-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"126505450","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 8
Exploring Covert Channel in Android Platform 探索Android平台的隐蔽通道
2012 International Conference on Cyber Security Pub Date : 2012-12-01 DOI: 10.1109/CyberSecurity.2012.29
W. Gasior, Li Yang
{"title":"Exploring Covert Channel in Android Platform","authors":"W. Gasior, Li Yang","doi":"10.1109/CyberSecurity.2012.29","DOIUrl":"https://doi.org/10.1109/CyberSecurity.2012.29","url":null,"abstract":"Network covert channels are used to exfiltrate information from a secured environment in a way that is extremely difficult to detect or prevent. These secret channels have been identified as an important security threat to governments and the private sector, and several research efforts have focused on the design, detection, and prevention of such channels in enterprise-type environments. Mobile devices have become a ubiquitous computing platform, and are storing or have access to an increasingly large amount of sensitive information. As such, these devices have become prime targets of attackers who desire access to this information. We explore the implementation of network covert channels on the Google Android mobile platform. Our work shows that covert communication channels can be successfully implemented on the Android platform to allow data to be leaked from these devices in a covert manner.","PeriodicalId":162858,"journal":{"name":"2012 International Conference on Cyber Security","volume":"33 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2012-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"122837241","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 25
I Have the Proof: Providing Proofs of Past Data Possession in Cloud Forensics 我有证据:在云取证中提供过去数据占有的证据
2012 International Conference on Cyber Security Pub Date : 2012-11-19 DOI: 10.1109/CYBERSECURITY.2012.17
Shams Zawoad, Ragib Hasan
{"title":"I Have the Proof: Providing Proofs of Past Data Possession in Cloud Forensics","authors":"Shams Zawoad, Ragib Hasan","doi":"10.1109/CYBERSECURITY.2012.17","DOIUrl":"https://doi.org/10.1109/CYBERSECURITY.2012.17","url":null,"abstract":"Cloud computing has emerged as a popular computing paradigm in recent years. However, today's cloud computing architectures often lack support for computer forensic investigations. A key task of digital forensics is to prove the presence of a particular file in a given storage system. Unfortunately, it is very hard to do so in a cloud given the black-box nature of clouds and the multi-tenant cloud models. In clouds, analyzing the data from a virtual machine instance or data stored in a cloud storage only allows us to investigate the current content of the cloud storage, but not the previous contents. In this paper, we introduce the idea of building proofs of past data possession in the context of a cloud storage service. We present a scheme for creating such proofs and evaluate its performance in a real cloud provider. We also discuss how this proof of past data possession can be used effectively in cloud forensics.","PeriodicalId":162858,"journal":{"name":"2012 International Conference on Cyber Security","volume":"56 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2012-11-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"129497850","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 23
首页 上一页
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
相关产品
×
本文献相关产品
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信