Academic Paper Summary

The first page of an article (Cimitle et al., 2017)

 

 "Talos: no more ransomware victims with formal methods" written by Cimitile, Mercaldo, Nardone, Santone and Visaggio is discussing different ways to prevent the ransomware attacks on Android devices. Authors provided evidence, which is prooving the high rate of ransomware attacks on mobile devices based on Android. Furthermore, the authors provided the summarize of most popular recently techniques, which are using to denied the ransomware attacks. Moreover, the article contains a few different protection models proposed by cybersecurity specialists such as method based on system call sequences and machine learning or the static detection system based on four scanning layers. Additionally, the authors are showing some formal methods for detecting ransomware attacks such as processes and files monitoring based on the processor usage or by using PushDown System. Moreover, the authors discuss using the algebra system CCS in case of denied the ransomware attack including the pros of this technique. One of the pros they mentioned is the fact that the described method can check not only given sentence. Moreover, the formula can check the logical structure of the file and detect the similarities with already known, reported as dangerous files. The CCS model has been implemented to Talos tool (Java system created to prevent ransomware attack on Android devices). By using the mentioned formula, Talos software was able to check the logical formula of files, and state some of the apps as ransomware family. To compare with other anti-malware software, authors state that, Talos tool has the biggest rate of detected dangerous files, which was over 99%. However, the authors state that ransomware is still an open subject. It means in the future we can expect more difficult to prevent attacks and it may be possible to find other, more successful methods to protect. To sum up, authors by analysing different ways to denied the ransomware attack had chosen one, which they applied to Talos software. That action allows them to create software, which was able to decline over 99% of ransomware attacks during the tests.

 

References


Cimitile, A., Mercaldo, F., Nardone, V., Santone, A. and Visaggio, C., 2018. Talos: no more ransomware victims with formal methods. International Journal of Information Security, [online] 17(6), pp.719-738. Available at: <https://search-proquest-com.proxy.library.dmu.ac.uk/docview/1978527548?pq-origsite=summon> [Accessed 5 December 2020].

 

Comments

  1. Test11 December 2020 at 05:23

    Hi

    Please add references (following Harvard style) and in text citations (again following Harvard style )for screenshots as we have discussed.

    A gentle reminder:
    Please note that it is possible to have more than 30 posts as per given list on blackboard.
    Follow the list given on blackboard (announcements).

    Please do not forget to submit Final Assessment Submission Form before deadline (11 Dec 2020 by 5 pm UK time).

    Many thanks
    Chirag

    ReplyDelete

Post a Comment

Popular posts from this blog

SSL Asymmetric Encryption (Diagram 2)

Image
SSL Cryptography bases two types of encription, which is Asymmetric Encryption and Symmetric Encryption (Johansen, 2020). Asymetric Encription: This type of encryption is the most popular one, which is using usually. In this technology, client and server to connect use two different keys, public and private. Public key is using only for encryption. It means, anyone can use this key to encrypt the message. Private key is secret and is using only for decryption.   Asymmetric encryption (Author's work) Resources: Johansen, A., 2020. What Is Encryption And How Does It Protect Your Data? . [online] Us.norton.com. Available at: <https://us.norton.com/internetsecurity-privacy-what-is-encryption.html> [Accessed 20 November 2020].
Read more

Opinion about safety (Survey Analysis)

Image
In my questionnaire, I asked people about their feeling of internet safety. The question was "How safe do you feel with using internet services?" Author's work, 1 - not safe, 5 - very safe         As we can see, the majority of the group is feeling safe on the Internet. Only 6 of the responders are feeling completely safe, which is negative, because they may be less focused during using the Internet, which can cause an opportunity to be charmed by hackers. Development of cybersecurity technologies is possibly a reason, why nobody feels completely unsafe on the Internet. Author's work, 1 - not safe, 5 - very safe   However, the general feeling of safety on the Internet is not related to using online payments. As we can see in the diagram, more people are worried about their safety in case of online payments. Comparison of these 2 diagrams may suggest, people are more worried about their money, than their sensitive data such as name, address, location etc.
Read more

How Ransomware attack works? (Models & Methodologies)

Image
The history of ransomware attacks starts in 1989. The first known attack targeted the healthcare industry (De Groot, 2020). Currently, ransomware attacks are one of the most popular cyber attacks. It is as one of the biggest threats to cybersecurity (Thomas, 2019).   Ransomware is a type of malware, which is basing on files encryption. To do this type of attack, hackers are using different software. However, the method of the attack is usually the same.     Ransomware attack process (The Asean Post, 2019)       1. Spam attachment The most popular method of spreading ransomware is sending the email spam with infected link or attachment inside. Usually, a message in the email is telling an action is required. For example, the hacker is sending an email with an infected file named as "invoice" to the business owner (De Groot, 2020).    2. Malware execution The user, which is aware of receiving infected email is opening the attachment. The virus start...
Read more