Attribution Classification Method of APT Malware in IoT Using Machine Learning Techniques

Li, Shudong; Zhang, Qian‐qing; Wu, Xiaobo; Han, Weihong; Tian, Zhihong

doi:10.1155/2021/9396141

Cited by 46 publications

(39 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Next, we will present the findings and analysis of the research questions. Watering hole [3,28,79,84,88,99,101,102] Malware [1,3,88,89,[102][103][104][105] Application repackaging [106] Attacks on an Internet-facing server [3,83,89,101] Removable device [3,89,107] Drive-by download [96] Spoofing attack [7,82,108] SQL injection Execution [3,5,82,84,[86][87][88]90,94,97,101,[109][110][111][112][113][114] Zero day, known vulnerability [79,101,115] Remote code execution/Code injection ...…”

Section: Analysis and Findings Of Research Questionsmentioning

confidence: 99%

“…Zero-day exploit-This attack takes advantage of an undiscovered software vulnerability for which no updates or fixes are available [3,5,82,84,[86][87][88]90,94,97,101,[109][110][111][112][113][114]; 2.…”

Section: Executionmentioning

confidence: 99%

“…One of the most common AI detection solutions used in the literature is AI techniques. Many AI techniques involving machine learning (ML) and deep learning (DL) that have been proposed by various researchers are either network-centric [1,3,6,7,79,[82][83][84][90][91][92][93]103,107,[111][112][113]116,118,121,125,130,131,[133][134][135][136][137][139][140][141][142][143][144][145][146][147][148][149][150][151][152], device behavior-centric [105,109,138], application-centric [5,86,110,…”

Section: Rq2: What Are the Proposed Defensive Mechanisms Available To...mentioning

confidence: 99%

“…Malware spreads via custom encrypted partitions on removable media (e.g., ProjectSauron APT) and exploits weak points in authentication mechanisms [117]. Furthermore, with the application-centric detection systems [5,86,110,124], the malware characteristics are generally categorized into static features (such as binary file characteristics and disassembly features) and dynamic features such as execution behavior features [179]. Static features may be difficult to extract because of APT attacks' polymorphism, distortion, and shelling.…”

Section: Rq2: What Are the Proposed Defensive Mechanisms Available To...mentioning

confidence: 99%

See 3 more Smart Citations

Exploration of Mobile Device Behavior for Mitigating Advanced Persistent Threats (APT): A Systematic Literature Review and Conceptual Framework

Jabar

Singh

2022

Sensors

View full text Add to dashboard Cite

During the last several years, the Internet of Things (IoT), fog computing, computer security, and cyber-attacks have all grown rapidly on a large scale. Examples of IoT include mobile devices such as tablets and smartphones. Attacks can take place that impact the confidentiality, integrity, and availability (CIA) of the information. One attack that occurs is Advanced Persistent Threat (APT). Attackers can manipulate a device’s behavior, applications, and services. Such manipulations lead to signification of a deviation from a known behavioral baseline for smartphones. In this study, the authors present a Systematic Literature Review (SLR) to provide a survey of the existing literature on APT defense mechanisms, find research gaps, and recommend future directions. The scope of this SLR covers a detailed analysis of most cybersecurity defense mechanisms and cutting-edge solutions. In this research, 112 papers published from 2011 until 2022 were analyzed. This review has explored different approaches used in cybersecurity and their effectiveness in defending against APT attacks. In a conclusion, we recommended a Situational Awareness (SA) model known as Observe–Orient–Decide–Act (OODA) to provide a comprehensive solution to monitor the device’s behavior for APT mitigation.

show abstract

Section: Analysis and Findings Of Research Questionsmentioning

confidence: 99%

Section: Executionmentioning

confidence: 99%

Section: Rq2: What Are the Proposed Defensive Mechanisms Available To...mentioning

confidence: 99%

Section: Rq2: What Are the Proposed Defensive Mechanisms Available To...mentioning

confidence: 99%

See 2 more Smart Citations

Exploration of Mobile Device Behavior for Mitigating Advanced Persistent Threats (APT): A Systematic Literature Review and Conceptual Framework

Jabar

Singh

2022

Sensors

View full text Add to dashboard Cite

show abstract

“…It provides a new idea for the study of abnormal warning of virtual cryptocurrency.Virtual cryptocurrency anomaly detection and early-warning star-moon value model is shown in Figure2. Based on current research results at home and abroad[27][28][29], this model organically combines the definition, research, and early warning of virtual cryptocurrency anomalies into an overall model.…”

mentioning

confidence: 99%

Fast Popularity Value Calculation of Virtual Cryptocurrency Trading Stage Based on Machine Learning

et al. 2022

View full text Add to dashboard Cite

This paper proposes a new definition method of currency, which further divides the current hot digital currency according to its legitimacy, encryption, centralization, and other characteristics. Among these, we are mainly interested in virtual cryptocurrencies. Virtual cryptocurrency is one of the application directions of blockchain technology. Its essence is a distributed shared ledger database, which generally has the characteristics of decentralization and non-tampering. The technologies supporting the practical application of virtual cryptocurrencies involve multiple scientific and technological fields such as mathematical algorithms, cryptography, Internet communication, and computer software. Since the launch of the first virtual cryptocurrency bitcoin in 2009, it has developed rapidly worldwide. As of August 1, 2021, more than 11,570 virtual cryptocurrencies have been publicly issued and traded globally, with a total value of over $1.68 trillion. This paper proposes the virtual cryptocurrency trading popularity value system as a standardized index for quantitative analysis of virtual cryptocurrency trading, and the virtual cryptocurrency trading index system as a barometer of the virtual cryptocurrency trading market. It has contributed schemes to the analysis of the market rules of virtual cryptocurrency transactions and the realization and early warning of abnormal virtual cryptocurrency transactions, which are the two main hot research directions of virtual cryptocurrency. To be specific, the popularity value of virtual cryptocurrency transactions provides parameters for analyzing individual virtual cryptocurrencies, and the popularity index of virtual cryptocurrency transactions provides parameters for analyzing the virtual cryptocurrency trading market, so as to prevent major risks of virtual cryptocurrency transactions.

show abstract

The Future of Financial Crime Prevention and Cybersecurity with Distributed Systems and Computing Approaches

Singh,

Guha

et al. 2024

Meta Heuristic Algorithms for Advanced Distributed Systems

View full text Add to dashboard Cite

Attribution Classification Method of APT Malware in IoT Using Machine Learning Techniques

Cited by 46 publications

References 23 publications

Exploration of Mobile Device Behavior for Mitigating Advanced Persistent Threats (APT): A Systematic Literature Review and Conceptual Framework

Exploration of Mobile Device Behavior for Mitigating Advanced Persistent Threats (APT): A Systematic Literature Review and Conceptual Framework

Fast Popularity Value Calculation of Virtual Cryptocurrency Trading Stage Based on Machine Learning

The Future of Financial Crime Prevention and Cybersecurity with Distributed Systems and Computing Approaches

Contact Info

Product

Resources

About