Detection of Intrusions and Malware, and Vulnerability Assessment
Springer Berlin (Verlag)
978-3-642-02917-2 (ISBN)
This book constitutes the refereed proceedings of the 6th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment, DIMVA 2009, held in Milan, Italy, in July 2009.
The 10 revised full papers presented together with three extended abstracts were carefully selected from 44 initial submissions. The papers are organized in topical sections on malware and SPAM, emulation-based detection, software diversity, harnessing context, and anomaly detection.
Malware and SPAM.- A Case Study on Asprox Infection Dynamics.- How Good Are Malware Detectors at Remediating Infected Systems?.- Towards Proactive Spam Filtering (Extended Abstract).- Emulation-Based Detection.- Shepherding Loadable Kernel Modules through On-demand Emulation.- Yataglass: Network-Level Code Emulation for Analyzing Memory-Scanning Attacks.- Defending Browsers against Drive-by Downloads: Mitigating Heap-Spraying Code Injection Attacks.- Software Diversity.- Polymorphing Software by Randomizing Data Structure Layout.- On the Effectiveness of Software Diversity: A Systematic Study on Real-World Vulnerabilities.- Harnessing Context.- Using Contextual Information for IDS Alarm Classification (Extended Abstract).- Browser Fingerprinting from Coarse Traffic Summaries: Techniques and Implications.- A Service Dependency Modeling Framework for Policy-Based Response Enforcement.- Anomaly Detection.- Learning SQL for Database Intrusion Detection Using Context-Sensitive Modelling (Extended Abstract).- Selecting and Improving System Call Models for Anomaly Detection.
| Erscheint lt. Verlag | 1.7.2009 |
|---|---|
| Reihe/Serie | Lecture Notes in Computer Science | Security and Cryptology |
| Zusatzinfo | X, 225 p. |
| Verlagsort | Berlin |
| Sprache | englisch |
| Maße | 155 x 235 mm |
| Gewicht | 367 g |
| Themenwelt | Informatik ► Theorie / Studium ► Kryptologie |
| Schlagworte | Access Control • address space randomization • alarm classification • Anomaly Detection • application fingerprinting • attack prevention • authentication • Buffer Overflow • code-injection attack • cross-site scripting • deterministic models • drive-by download • EMU • Emulation • filtering • Hardcover, Softcover / Informatik, EDV/Informatik • honeypots • intrusion analysis • Intrusion Detection • machine learning • malicious code • Malware • malware detection • network intrusion • Network Security • operating system discovery • privacy • rootkit prevention • sandboxing • scan detection • security • self organizing map • Software Testing • stochastic models • virtualization • virtual machine monitor • Web-based intrusion |
| ISBN-10 | 3-642-02917-5 / 3642029175 |
| ISBN-13 | 978-3-642-02917-2 / 9783642029172 |
| Zustand | Neuware |
| Haben Sie eine Frage zum Produkt? |
aus dem Bereich
