Show simple item record

dc.contributor.authorWood, Ashley
dc.contributor.authorEze, Thaddeus
dc.contributor.authorSpeakman, Lee
dc.date.accessioned2021-02-24T09:46:33Z
dc.date.available2021-02-24T09:46:33Z
dc.identifierhttps://chesterrep.openrepository.com/bitstream/handle/10034/624279/Talos.pdf?sequence=1
dc.identifier.citationA. Wood, T. Eze & L. Speakman (2021). Talos: a prototype Intrusion Detection and Prevention system for profiling ransomware behaviour. 20th European Conference on Cyber Warfare and Security, Chester, England, 2021en_US
dc.identifier.urihttp://hdl.handle.net/10034/624279
dc.description.abstractAbstract: In this paper, we profile the behaviour and functionality of multiple recent variants of WannaCry and CrySiS/Dharma, through static and dynamic malware analysis. We then analyse and detail the commonly occurring behavioural features of ransomware. These features are utilised to develop a prototype Intrusion Detection and Prevention System (IDPS) named Talos, which comprises of several detection mechanisms/components. Benchmarking is later performed to test and validate the performance of the proposed Talos IDPS system and the results discussed in detail. It is established that the Talos system can successfully detect all ransomware variants tested, in an average of 1.7 seconds and instigate remedial action in a timely manner following first detection. The paper concludes with a summarisation of our main findings and discussion of potential future works which may be carried out to allow the effective detection and prevention of ransomware on systems and networks.en_US
dc.publisherACPI - Academic Conferences and Publishing Internationalen_US
dc.relation.urlhttps://www.academic-conferences.org/conferences/eccws/en_US
dc.rights.urihttps://creativecommons.org/licenses/by-nc-nd/4.0/en_US
dc.subjectIDSen_US
dc.subjectIPSen_US
dc.subjectIDPSen_US
dc.subjectRansomwareen_US
dc.subjectWannaCryen_US
dc.subjectCrySiS/Dharmaen_US
dc.titleTalos: a prototype Intrusion Detection and Prevention system for profiling ransomware behaviouren_US
dc.typeConference Proceedingen_US
dc.contributor.departmentUniversity of Chesteren_US
dc.identifier.journalECCWS Conference Proceedingsen_US
or.grant.openaccessYesen_US
rioxxterms.funderunfundeden_US
rioxxterms.identifier.projectunfundeden_US
rioxxterms.versionAMen_US
rioxxterms.licenseref.startdate2021-06-25
dcterms.dateAccepted2021-02-08
rioxxterms.publicationdate2021-06-25
dc.date.deposited2021-02-24en_US
dc.indentifier.issn2049-9870en_US


Files in this item

Thumbnail
Name:
Talos.pdf
Embargo:
2021-06-25
Size:
667.0Kb
Format:
PDF
Request:
Main article

This item appears in the following Collection(s)

Show simple item record

https://creativecommons.org/licenses/by-nc-nd/4.0/
Except where otherwise noted, this item's license is described as https://creativecommons.org/licenses/by-nc-nd/4.0/