WiSec 2011 Poster: Context-adaptive Entropy Analysis as a Lightweight Detector of Zero-day Shellcode on Mobiles

Thomas C. Schmidt; Matthias Wahlisch; Benjamin Jochheim; Michael Groning

首页> 外文期刊>Mobile computing and communications review >WiSec 2011 Poster: Context-adaptive Entropy Analysis as a Lightweight Detector of Zero-day Shellcode on Mobiles

【24h】

WiSec 2011 Poster: Context-adaptive Entropy Analysis as a Lightweight Detector of Zero-day Shellcode on Mobiles

机译：WiSec 2011海报：上下文自适应熵分析作为手机零日Shellcode的轻量级检测器

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

New approaches for detecting attack traces in network traffic are needed for handheld devices that commonly own limited resources, but multiple, heterogeneous network interfaces. In this paper, we report on early results for statistical traffic analysis based on the Shannon Entropy. Unlike previous work, our time-frequency analysis extracts the non-stationary properties of entropy signals. From this context-adaptive technique, we obtain a clear signature of binary instructions and can also detect embedded shellcode.

机译：对于通常拥有有限资源但具有多个异构网络接口的手持设备，需要一种用于检测网络流量中攻击痕迹的新方法。在本文中，我们报告了基于Shannon熵的统计流量分析的早期结果。与以前的工作不同，我们的时频分析提取了熵信号的非平稳特性。通过这种上下文自适应技术，我们可以获得二进制指令的清晰签名，并且还可以检测嵌入式shellcode。

著录项

来源
《Mobile computing and communications review》 |2011年第3期|p.47-48|共2页
作者
Thomas C. Schmidt; Matthias Wahlisch; Benjamin Jochheim; Michael Groning;
展开▼
作者单位

Department Informatik, Hamburg University of Applied Sciences, Hamburg, Germany;

Institut fur Informatik, Freie Universitat Berlin, Berlin, Germany;

Department Informatik, Hamburg University of Applied Sciences, Hamburg, Germany;

Department Informatik, Hamburg University of Applied Sciences, Hamburg, Germany;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词

相似文献

外文文献
中文文献
专利

1. WiSec' 2011 Poster: Security Enhancement for Bluetooth Low Energy with Merkle's Puzzle [J] . Heiner Perrey, Osman Ugus, Dirk Westhoff Mobile computing and communications review . 2011,第3期

机译：WiSec的2011年海报：通过Merkle的拼图增强低功耗蓝牙的安全性
2. ACM WiSec 2011 Poster and Demo Session [J] . Frank Kargl, Panos Papadimitratos Mobile computing and communications review . 2011,第3期

机译：ACM WiSec 2011海报和演示会议
3. WiSec 2011 Poster: A Modular Design for a Hardware Security Module in Car-to-X Communication [J] . Attila Jaeger, Hagen Stiibing, Sorin A. Huss Mobile computing and communications review . 2011,第3期

机译：WiSec 2011海报：Car-to-X通信中的硬件安全模块的模块化设计
4. 7.10: Presentation session: Poster session and reception: “Early detection of Alzheimer''s disease using nonlinear analysis of EEG via Tsallis entropy” [C] . De Bock Thibaut Proceedings of the 2010 Biomedical Sciences and Engineering Conference . 2010

机译：7.10：演讲：海报发布和招待会：“通过Tsallis熵对脑电图进行非线性分析，早期发现阿尔茨海默氏病”
5. Multiscale entropy rate analysis of complex mobile agents [O] . Tuhin Paul, Kevin G. Stanley, Nathaniel D. Osgood 2018

机译：复杂移动代理的多尺度熵率分析
6. Analyzing possible pitfalls of cross-frequency analysis : poster presentation from Twentieth Annual Computational Neuroscience Meeting CNS*2011 Stockholm, Sweden, 23 - 28 July 2011 [O] . Aru Juhan, Aru Jaan, Wibral Michael, 2011

机译：分析跨频分析的可能陷阱：第20届年度计算神经科学年会CNS * 2011的海报演示，瑞典斯德哥尔摩，2011年7月23日至28日

WiSec 2011 Poster: Context-adaptive Entropy Analysis as a Lightweight Detector of Zero-day Shellcode on Mobiles

摘要

著录项

相似文献

相关主题

期刊订阅