Prevention of Crypto-Ransomware Using a Pre-Encryption Detection Algorithm

Kok, Stanley; Abdullah, Azween; Jhanjhi, N. Z.; Supramaniam, Mahadevan

doi:10.3390/computers8040079

Cited by 80 publications

(39 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…e algorithm can effectively reduce the false alarm rate and network delay, but in real-time detection, the detection efficiency of the algorithm needs to be improved. In [21], a preencryption detection algorithm is proposed to detect encrypted ransomware. Compared with some algorithms based on machine learning, it is found that the proposed preencryption algorithm has better performance and a lower false alarm rate.…”

Section: Related Workmentioning

confidence: 99%

Intrusion Detection Method Based on Adaptive Clonal Genetic Algorithm and Backpropagation Neural Network

Liu

Zhou

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

Intrusion Detection System (IDS) is an important part of ensuring network security. When the system faces network attacks, it can identify the source of threats in a timely and accurate manner and adjust strategies to prevent hackers from intruding. Efficient IDS can identify external threats well, but traditional IDS has poor performance and low recognition accuracy. To improve the detection rate and accuracy of IDS, this paper proposes a novel ACGA-BPNN method based on adaptive clonal genetic algorithm (ACGA) and backpropagation neural network (BPNN). ACGA-BPNN is simulated on the KDD-CUP’99 and UNSW-NB15 data sets. The simulation results indicate that, in contrast to the methods based on simulated annealing (SA) and genetic algorithm (GA), the detection rate and accuracy of ACGA-BPNN are much higher than of GA-BPNN and SA-BPNN. In the classification results of KDD-CUP’99, the classification accuracy of ACGA-BPNN is 11% higher than GA-BPNN and 24.2% higher than SA-BPNN, and F-score reaches 99.0%. In addition, ACGA-BPNN has good global searchability and its convergence speed is higher than that of GA-BPNN and SA-BPNN. Furthermore, ACGA-BPNN significantly improves the overall detection performance of IDS.

show abstract

Section: Related Workmentioning

confidence: 99%

Intrusion Detection Method Based on Adaptive Clonal Genetic Algorithm and Backpropagation Neural Network

Liu

Zhou

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Developing a software from scratch is comparable to reinventing the wheel by many, hence solutions are offered to secure existing software systems. Some to name are Component-Based Software Engineering (CBSE), use of authentication schemes, systematic frameworks, graphical authentication models for mobile devices and applications [8], specialized attack detection techniques [9], etc. CBSE helps in minimizing the efforts of building a software system by reusing the components, "component dependency and component interaction" [10].…”

Section: A Methods Used For Improvement In Software Reliability and mentioning

confidence: 99%

Securing Software Systems - A Survey

Weixiong¹,

Dozono²,

Lee³

et al. 2020

Preprint

View full text Add to dashboard Cite

This paper aims to discuss the standard guidelines of the development process of secure software and will give justification on different types and ways of the software development processes. Additionally, a survey is conducted, the aim of which is to observe user behavior towards software system usage, user attitude in terms of privacy and policy awareness, security and privacy concerns. This is followed by discussion on how to secure software systems in development stage.

show abstract

“…Furthermore, it shows that ransomware may be identified using individual or shared patterns. Furthermore, Kok et al [14] proposed a pre-encryption algorithm that composed of two phases the first, is a machine learning algorithm used to detect the ransomware before encrypting user files, which based on API pattern recognition. Hence, it uses Cuckoo sandbox to captures the (API) generated by the suspicious program and analyzes them, but it may have a high false positive rate.…”

Section: File Access and File System Activitymentioning

confidence: 99%

Ransomware Prevention and Mitigation Techniques

Alshaikh¹,

Ramadan²,

Ahmed³

2020

IJCA

View full text Add to dashboard Cite

Ransomware is a malware family that using security techniques such as cryptography to hijacking user files and associated resources and requests cryptocurrency in exchange for the locked data. There is no limit to who can be targeted by ransomware since it can be transmitted over the internet. Like traditional malware, ransomware may enter the system utilizing "social engineering, malware advertising, spam emails, take advantage of vulnerabilities, drive-by downloads or through open ports or by utilizing back doors". But in contrast to traditional malware, even after removal, ransomware influence is irreparable and tough to alleviate its impact without its creator assistance. This kind of attack has a straightforward financial implication, which is fueled by encryption technology, cyber currency. Therefore, ransomware has turned into a profitable business that has obtained rising popularity between attackers. As stated by "Cybersecurity Ventures", ransomware is the quickest increasing type of cybercrime. Since, global ransomware wastage expense is predicted to hit $20 billion in 2021, up from just $325 million in 2015 which, is 57X extra in 2021. In this paper, a brief of the recent research in the prevention of ransomware attacks and the best practices to mitigate the attack impact is presented. General TermsRansomware prevention technique, ransomware mitigation technique, signature-based, behavior-based.

show abstract

Prevention of Crypto-Ransomware Using a Pre-Encryption Detection Algorithm

Cited by 80 publications

References 21 publications

Intrusion Detection Method Based on Adaptive Clonal Genetic Algorithm and Backpropagation Neural Network

Intrusion Detection Method Based on Adaptive Clonal Genetic Algorithm and Backpropagation Neural Network

Securing Software Systems - A Survey

Ransomware Prevention and Mitigation Techniques

Contact Info

Product

Resources

About