SCOPUS 정보 검색 플랫폼

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 5905 LNCS, Issue , 2009, Pages 178-192

A framework for behavior-based malware analysis in the cloud

(3) Martignoni, Lorenzo a Paleari, Roberto b Bruschi, Danilo b

a UNIVERSITY OF UDINE (Italy)

b UNIVERSITY OF MILAN (Italy)

Author keywords

[No Author keywords available]

Indexed keywords

BEHAVIOR-BASED; COMPUTATIONAL COSTS; DYNAMIC BEHAVIORS; END-USERS; EXECUTION ENVIRONMENTS; FINE-GRAINED ANALYSIS; MALICIOUS ACTIVITIES; MALWARES;

COMPUTER CRIME; INFORMATION SYSTEMS;

NETWORK SECURITY;

EID: 71549142277 PISSN: 03029743 EISSN: 16113349 Source Type: Book Series
DOI: 10.1007/978-3-642-10772-6_14 Document Type: Conference Paper

Times cited : (41)

References (27)

1
- 71549140753
- Bayer, U., Kruegel, C., Kirda, E.: TTAnalyze: A Tool for Analyzing Malware. In: Proceedings of the Annual Conference of the European Institute for Computer Antivirus Research (2006)
- Bayer, U., Kruegel, C., Kirda, E.: TTAnalyze: A Tool for Analyzing Malware. In: Proceedings of the Annual Conference of the European Institute for Computer Antivirus Research (2006)

2
- 78049387622
- A Layered Architecture for Detecting Malicious Behaviors
- Martignoni, L., Stinson, E., Fredrikson, M., Jha, S., Mitchell, J.C.: A Layered Architecture for Detecting Malicious Behaviors. In: Proceedings of the International Symposium on Recent Advances in Intrusion Detection (2008)
- (2008) Proceedings of the International Symposium on Recent Advances in Intrusion Detection
- Martignoni, L.¹ Stinson, E.² Fredrikson, M.³ Jha, S.⁴ Mitchell, J.C.⁵

3
- 77950788046
- Panorama: Capturing Systemwide Information Flow for Malware Detection and Analysis
- Yin, H., Song, D., Egele, M., Kirda, E., Kruegel, C.: Panorama: Capturing Systemwide Information Flow for Malware Detection and Analysis. In: Proceedings of the Conference on Computer and Communications Security (2007)
- (2007) Proceedings of the Conference on Computer and Communications Security
- Yin, H.¹ Song, D.² Egele, M.³ Kirda, E.⁴ Kruegel, C.⁵

4
- 84869669727
- NovaShield: http://www.novashield.com/
- NovaShield

5
- 84869689202
- Panda Security: True Prevent, http://research.pandasecurity.com/archive/ How-TruPrevent-Works--2800-I-2900-.aspx
- Panda Security: True Prevent

6
- 84869667852
- Sana Security: http://www.sanasecurity.com/
- Sana Security

7
- 34548737161
- Exploring Multiple Execution Paths for Malware Analysis
- Moser, A., Kruegel, C., Kirda, E.: Exploring Multiple Execution Paths for Malware Analysis. In: Proceeding of the IEEE Symposium on Security and Privacy (2007)
- (2007) Proceeding of the IEEE Symposium on Security and Privacy
- Moser, A.¹ Kruegel, C.² Kirda, E.³

8
- 34548772699
- Towards Automatically Identifying Trigger-based Behavior in Malware using Symbolic Execution and Binary Analysis
- Technical Report CMU-CS-07-105, Carnegie Mellon University
- Brumley, D., Hartwig, C., Liang, Z., Newsome, J., Song, D., Yin, H.: Towards Automatically Identifying Trigger-based Behavior in Malware using Symbolic Execution and Binary Analysis. Technical Report CMU-CS-07-105, Carnegie Mellon University (2007)
- (2007)
- Brumley, D.¹ Hartwig, C.² Liang, Z.³ Newsome, J.⁴ Song, D.⁵ Yin, H.⁶

9
- 71549147630
- Master's thesis, University of Arizona
- Chabbi, M.: Efficient Taint Analysis Using Multicore Machines. Master's thesis, University of Arizona (2007)
- (2007) Efficient Taint Analysis Using Multicore Machines
- Chabbi, M.¹

10
- 77957797161
- Parallelizing security checks on commodity hardware
- Nightingale, E.B., Peek, D., Chen, P.M., Flinn, J.: Parallelizing security checks on commodity hardware. In: Proceedings of the international Conference on Architectural Support for Programming Languages and Operating Systems (2008)
- (2008) Proceedings of the international Conference on Architectural Support for Programming Languages and Operating Systems
- Nightingale, E.B.¹ Peek, D.² Chen, P.M.³ Flinn, J.⁴

11
- 34748845128
- Practical Taint-based Protection Using Demand Emulation
- Ho, A., Fetterman, M., Clark, C., Warfield, A., Hand, S.: Practical Taint-based Protection Using Demand Emulation. In: Proceedings of the EuroSys Conference (2006)
- (2006) Proceedings of the EuroSys Conference
- Ho, A.¹ Fetterman, M.² Clark, C.³ Warfield, A.⁴ Hand, S.⁵

12
- 84885889450
- F-Secure: Trojan Information Pages: Bancos.VE, http://www.f-secure.com/v- descs/bancos-ve.shtml
- F-Secure: Trojan Information Pages: Bancos.VE

13
- 71549164714
- NoAH Consortium: Containment environment design. Technical report, European Network of Affined Honeypots (2006)
- NoAH Consortium: Containment environment design. Technical report, European Network of Affined Honeypots (2006)

14
- 85084162735
- A Secure Environment for Untrusted Helper Applications
- Goldberg, I., Wagner, D., Thomas, R., Brewer, E.A.: A Secure Environment for Untrusted Helper Applications. In: Proceedings of the USENIX Security Symposium (1996)
- (1996) Proceedings of the USENIX Security Symposium
- Goldberg, I.¹ Wagner, D.² Thomas, R.³ Brewer, E.A.⁴

15
- 33745203232
- Addison-Wesley, Reading
- Hoglund, G., Butler, J.: Rootkits: Subverting the Windows Kernel. Addison-Wesley, Reading (2006)
- (2006) Rootkits: Subverting the Windows Kernel
- Hoglund, G.¹ Butler, J.²

16
- 33745167170
- 4th edn. Microsoft Press, Redmond
- Russinovich, M., Solomon, D.: Microsoft Windows Internals, 4th edn. Microsoft Press, Redmond (2004)
- (2004) Microsoft Windows Internals
- Russinovich, M.¹ Solomon, D.²

17
- 84869669739
- Cendio: SeamlessRDP - Seamless Windows Support for rdesktop, http://www.cendio.com/seamlessrdp/
- SeamlessRDP - Seamless Windows Support for rdesktop

18
- 84969564072
- One-way Isolation: An Effective Approach for Realizing Safe Execution Environments
- Sun, W., Liang, Z., Sekar, R., Venkatakrishnan, V.N.: One-way Isolation: An Effective Approach for Realizing Safe Execution Environments. In: Proceedings of the Symposium on Network and Distributed Systems Security (2005)
- (2005) Proceedings of the Symposium on Network and Distributed Systems Security
- Sun, W.¹ Liang, Z.² Sekar, R.³ Venkatakrishnan, V.N.⁴

19
- 70349141059
- On the Limits of Information Flow Techniques for Malware Analysis and Containment
- Cavallaro, L., Saxena, P., Sekar, R.: On the Limits of Information Flow Techniques for Malware Analysis and Containment. In: Proceedings of the Conference on Detection of Intrusions and Malware & Vulnerability Assessment (2008)
- (2008) Proceedings of the Conference on Detection of Intrusions and Malware & Vulnerability Assessment
- Cavallaro, L.¹ Saxena, P.² Sekar, R.³

20
- 85156147536
- Impeding Malware Analysis Using Conditional Code Obfuscation
- Sharif, M., Lanzi, A., Giffin, J., Lee, W.: Impeding Malware Analysis Using Conditional Code Obfuscation. In: Proceedings of the Annual Network and Distributed System Security Symposium (2008)
- (2008) Proceedings of the Annual Network and Distributed System Security Symposium
- Sharif, M.¹ Lanzi, A.² Giffin, J.³ Lee, W.⁴

21
- 67650803219
- An Analysis of Conficker's Logic and Rendezvous Points
- Technical report, SRI International
- Porras, P., Saidi, H., Yegneswaran, V.: An Analysis of Conficker's Logic and Rendezvous Points. Technical report, SRI International (2009)
- (2009)
- Porras, P.¹ Saidi, H.² Yegneswaran, V.³

22
- 70349240080
- Ether: Malware Analysis via Hardware Virtualization Extensions
- Dinaburg, A., Royal, P., Sharif, M., Lee,W.: Ether: Malware Analysis via Hardware Virtualization Extensions. In: Proceedings of the Conference on Computer and communications security (2008)
- (2008) Proceedings of the Conference on Computer and communications security
- Dinaburg, A.¹ Royal, P.² Sharif, M.³ Lee, W.⁴

23
- 85077723796
- CloudAV: N-Version Antivirus in the Network Cloud
- Oberheide, J., Cooke, E., Jahanian, F.: CloudAV: N-Version Antivirus in the Network Cloud. In: Proceedings of the USENIX Security Symposium (2008)
- (2008) Proceedings of the USENIX Security Symposium
- Oberheide, J.¹ Cooke, E.² Jahanian, F.³

24
- 71549159549
- Panda Security: From Traditional Antivirus to Collective Intelligence (2007)
- Panda Security: From Traditional Antivirus to Collective Intelligence (2007)

25
- 34047110218
- Toward automated dynamic malware analysis using CWSandbox
- Willems, C., Holz, T., Freiling, F.: Toward automated dynamic malware analysis using CWSandbox. IEEE Security and Privacy (2007)
- (2007) IEEE Security and Privacy
- Willems, C.¹ Holz, T.² Freiling, F.³

26
- 19944369300
- SPEEDUP Journal
- Livny, M., Basney, J., Raman, R., Tannenbaum, T.: Mechanisms for High Throughput Computing. SPEEDUP Journal (1997)
- (1997) Mechanisms for High Throughput Computing
- Livny, M.¹ Basney, J.² Raman, R.³ Tannenbaum, T.⁴

27
- 84869688710
- VirtualSquare: Remote System Call, http://wiki.virtualsquare.org/index. php/Remote-System-Call
- Remote System Call

* 이 정보는 Elsevier사의 SCOPUS DB에서 KISTI가 분석하여 추출한 것입니다.