CAMP: Content-Agnostic Malware Protection

20th Annual Network and Distributed System Security Symposium, NDSS 2013

Volumn , Issue , 2013, Pages

  Rajab, Moheeb Abu ^a   Ballard, Lucas ^a   Lutz, Noé ^a   Mavrommatis, Panayiotis ^a   Provos, Niels ^a  

^a GOOGLE INC   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

'CURRENT; CONTENT-BASED; DYNAMICS ANALYSIS; GOOGLE+; ITS ARCHITECTURE; LOCAL DECISIONS; MALICIOUS CODES; MALWARES; PROTECTION SYSTEMS; SERVER SIDES;

MALWARE;

EID: 85180410682     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (33)

1. VirusTotal. https://www.virustotal.com/.
2. M. Antonakakis, R. Perdisci, D. Dagon, W. Lee, and N. Feamster. Building a Dynamic Reputation System for DNS. In Proceedings of the 19th USENIX Security Symposium (August 2010).
3. M. Antonakakis, R. Perdisci, W. Lee, N. Vasiloglou II, and D. Dagon. Detecting malware domains at the upper dns hierarchy. In Proceedings of the 20th USENIX Security Symposium, USENIX Security, volume 11, 2011.
4. A. Averbuch, M. Kiperberg, and N. Zaidenberg. An efficient vm-based software protection. In Network and System Security (NSS), 2011 5th International Conference on, pages 121-128. IEEE, 2011.
5. L. Bilge, E. Kirda, C. Kruegel, and M. Balduzzi. Exposure: Finding malicious domains using passive dns analysis. In NDSS. The Internet Society, 2011.
6. Bit9. Bit9 Global Software Registry. http://www.bit9.com/products/bit9-global-software-registry.php, July 2012.
7. J. Caballero, C. Grier, C. Kreibich, and V. Paxson. Measuring Pay-per-Install: The Commoditization of Malware Distribution. In Proceedings of the the 20th USENIX Security Symposium, San Francisco, CA, August 2011.
8. F. Chang, J. Dean, S. Ghemawat, W. Hsieh, D. Wallach, M. Burrows, T. Chandra, A. Fikes, and R. Gruber. Bigtable: A distributed storage system for structured data. ACM Transactions on Computer Systems (TOCS), 26(2):1-26, 2008.
9. M. Christodorescu, S. Jha, S. Seshia, D. Song, and R. Bryant. Semantics-aware malware detection. IEEE Symposium on Security and Privacy, pages 32-46, 2005.
10. R. Colvin. Stranger Danger - Introducing SmartScreen Application Reputation. http://blogs.msdn.com/b/ie/archive/2010/10/13/stranger-danger-introducing-smartscreen-application-reputation.aspx, October 2010.
11. CoreTrace. Application Whitelisting: A New Security Paradigm. http://www.coretrace.com/, July 2008.
12. M. Cova, C. Leita, O. Thonnard, A. Keromytis, and M. Dacier. An analysis of rogue av campaigns. In Recent Advances in Intrusion Detection, pages 442-463. Springer, 2010.
13. C. Curtsinger, B. Livshits, B. Zorn, and C. Seifert. Zozzle: Fast and precise in-browser javascript malware detection. In USENIX Security Symposium, 2011.
14. J. Dean and S. Ghemawat. Mapreduce: Simplified data processing on large clusters. In Proceedings of the Sixth Symposium on Operating System Design and Implementation, pages 137-150, Dec 2004.
15. P. Ferrie. Attacks on More Virtual Machine Emulators. Symantec White Paper, 2007.
16. Google. Google Safe Browsing API. http://code.google.com/apis/safebrowsing/, July 2012.
17. C. Grier, S. Tang, and S. King. Secure web browsing with the op web browser. In Security and Privacy, 2008. SP 2008. IEEE Symposium on, pages 402-416. Ieee, 2008.
18. S. Hao, N. A. Syed, N. Feamster, A. G. Gray, and S. Krasser. Detecting spammers with snare: spatio-temporal network-level automatic reputation engine. In Proceedings of the 18th conference on USENIX security symposium, SSYM'09, pages 101-118, Berkeley, CA, USA, 2009. USENIX Association.
19. K. Hoffman, D. Zage, and C. Nita-Rotaru. A survey of attack and defense techniques for reputation systems. ACM Computing Surveys (CSUR), 42(1):1, 2009.
20. C. Kanich, N. Weaver, D. McCoy, T. Halvorson, C. Kreibich, K. Levchenko, V. Paxson, G. Voelker, and S. Savage. Show me the money: Characterizing spam-advertised revenue. In Proceedings of the 20th USENIX Security Symposium, San Francisco, CA, 2011.
21. L. Lu, V. Yegneswaran, P. Porras, and W. Lee. Blade: an attack-agnostic approach for preventing drive-by malware infections. In Proceedings of the 17th ACM conference on Computer and communications security, pages 440-450. ACM, 2010.
22. McAfee. McAfee Site Advisor. http://www.siteadvisor.com/, July 2012.
23. Norton. Norton Safe Web. http://safeweb.norton.com, July 2012.
24. J. Oberheide, E. Cooke, and F. Jahanian. Cloudav: N-version Antivirus in the Network Cloud. In Proceedings of the 17th conference on Security symposium, pages 91-106. USENIX Association, 2008.
25. N. Provos, P. Mavrommatis, M. A. Rajab, and F. Monrose. All Your iFRAMEs Point to Us. In USENIX Security Symposium, pages 1-16, 2008.
26. Z. Qian, Z. M. Mao, Y. Xie, and F. Yu. On network-level clusters for spam detection. In NDSS. The Internet Society, 2010.
27. M. Rajab, L. Ballard, N. Jagpal, P. Mavrommatis, D. Nojiri, N. Provos, and L. Schmidt. Trends in circumventing web-malware detection. Technical report, Google, Tech. Rep., July 2011.
28. rd USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), April 2010.
29. C. Reis, A. Barth, and C. Pizano. Browser security: lessons from google chrome. Queue, 7(5):3, 2009.
30. P. Royal, M. Halpin, D. Dagon, R. Edmonds, and W. Lee. Polyunpack: Automating the hidden-code extraction of unpack-executing malware. In Computer Security Applications Conference, 2006. ACSAC'06. 22nd Annual, pages 289-300. IEEE, 2006.
31. C. Song, P. Royal, and W. Lee. Impeding automated malware analysis with environment-sensitive malware. In Proceedings of the 7th USENIX conference on Hot Topics in Security, HotSec'12, pages 4-4, Berkeley, CA, USA, 2012. USENIX Association.
32. H. Wang, C. Grier, A. Moshchuk, S. King, P. Choudhury, and H. Venter. The multi-principal os construction of the gazelle web browser. In Proceedings of the 18th conference on USENIX security symposium, pages 417-432. USENIX Association, 2009.
33. H. Yin, D. Song, M. Egele, C. Kruegel, and E. Kirda. Panorama: Capturing System-wide Information Flow for Malware Detection and Analysis. In Proceedings of the 14th ACM Conference of Computer and Communication Security, October 2007.