English
Related papers

Related papers: Deciphering Malware's use of TLS (without Decrypti…

200 papers

The use of operating system API calls is a promising task in the detection of PE-type malware in the Windows operating system. This task is officially defined as running malware in an isolated sandbox environment, recording the API calls…

Cryptography and Security · Computer Science 2021-02-23 Ferhat Ozgur Catak , Ahmet Faruk Yazı

The merits of machine learning in information security have primarily focused on bolstering defenses. However, machine learning (ML) techniques are not reserved for organizations with deep pockets and massive data repositories; the…

Cryptography and Security · Computer Science 2020-07-15 Will Pearce , Nick Landers , Nancy Fulda

With the increase in machine learning (ML) applications in different domains, incentives for deceiving these models have reached more than ever. As data is the core backbone of ML algorithms, attackers shifted their interest toward…

Cryptography and Security · Computer Science 2023-01-04 Kshitiz Aryal , Maanak Gupta , Mahmoud Abdelsalam

Malware authors often use cryptographic tools such as XOR encryption and block ciphers like AES to obfuscate part of the malware to evade detection. Use of cryptography may give the impression that these obfuscation techniques have some…

Cryptography and Security · Computer Science 2023-09-11 Hassan Jameel Asghar , Benjamin Zi Hao Zhao , Muhammad Ikram , Giang Nguyen , Dali Kaafar , Sean Lamont , Daniel Coscia

A number of important real-world protocols including the Transport Layer Security (TLS) protocol have the ability to negotiate various security-related choices such as the protocol version and the cryptographic algorithms to be used in a…

Cryptography and Security · Computer Science 2019-01-29 Eman Salem Alashwali , Kasper Rasmussen

Machine learning (ML) has rapidly advanced in recent years, revolutionizing fields such as finance, medicine, and cybersecurity. In malware detection, ML-based approaches have demonstrated high accuracy; however, their lack of transparency…

Cryptography and Security · Computer Science 2025-04-09 Harikha Manthena , Shaghayegh Shajarian , Jeffrey Kimmell , Mahmoud Abdelsalam , Sajad Khorsandroo , Maanak Gupta

Self-supervised learning (SSL) is a prevalent approach for encoding data representations. Using a pre-trained SSL image encoder and subsequently training a downstream classifier, impressive performance can be achieved on various tasks with…

Cryptography and Security · Computer Science 2024-07-18 Mengxin Zheng , Jiaqi Xue , Zihao Wang , Xun Chen , Qian Lou , Lei Jiang , Xiaofeng Wang

In webpage fingerprinting, an on-path adversary infers the specific webpage loaded by a victim user by analysing the patterns in the encrypted TLS traffic exchanged between the user's browser and the website's servers. This work studies…

Cryptography and Security · Computer Science 2023-10-30 Vasilios Mavroudis , Jamie Hayes

Ransomware is a type of malware which encrypts user data and extorts payments in return for the decryption keys. This cyberthreat is one of the most serious challenges facing organizations today and has already caused immense financial…

Cryptography and Security · Computer Science 2023-11-15 Aldin Vehabovic , Hadi Zanddizari , Nasir Ghani , G. Javidi , S. Uluagac , M. Rahouti , E. Bou-Harb , M. Safaei Pour

Network traffic inspection, including TLS traffic, in enterprise environments is widely practiced. Reasons for doing so are primarily related to improving enterprise security (e.g., malware detection) and meeting legal requirements. To…

Cryptography and Security · Computer Science 2018-09-25 Louis Waked , Mohammad Mannan , Amr Youssef

Digital systems find it challenging to keep up with cybersecurity threats. The daily emergence of more than 560,000 new malware strains poses significant hazards to the digital ecosystem. The traditional malware detection methods fail to…

Cryptography and Security · Computer Science 2025-04-28 Abrar Fahim , Shamik Dey , Md. Nurul Absur , Md Kamrul Siam , Md. Tahmidul Huque , Jafreen Jafor Godhuli

Android Malware has emerged as a consequence of the increasing popularity of smartphones and tablets. While most previous work focuses on inherent characteristics of Android apps to detect malware, this study analyses indirect features and…

Cryptography and Security · Computer Science 2017-12-13 Ignacio Martín , José Alberto Hernández , Alfonso Muñoz , Antonio Guzmán

Recent work has shown that deep-learning algorithms for malware detection are also susceptible to adversarial examples, i.e., carefully-crafted perturbations to input malware that enable misleading classification. Although this has…

Cryptography and Security · Computer Science 2019-01-25 Luca Demetrio , Battista Biggio , Giovanni Lagorio , Fabio Roli , Alessandro Armando

The parallel evolution of Large Language Models (LLMs) with advanced code-understanding capabilities and the increasing sophistication of malware presents a new frontier for cybersecurity research. This paper evaluates the efficacy of…

Cryptography and Security · Computer Science 2026-01-15 Aniesh Chawla , Udbhav Prasad

In this paper, we use $K$-means clustering to analyze various relationships between malware samples. We consider a dataset comprising~20 malware families with~1000 samples per family. These families can be categorized into seven different…

Cryptography and Security · Computer Science 2021-03-11 Samanvitha Basole , Mark Stamp

Current malware (malicious software) analysis tools focus on detection and family classification but fail to provide clear and actionable narrative insights into the malignant activity of the malware. Therefore, there is a need for a tool…

Cryptography and Security · Computer Science 2025-04-03 Bikash Saha , Nanda Rani , Sandeep Kumar Shukla

Malicious software (malware) classification offers a unique challenge for continual learning (CL) regimes due to the volume of new samples received on a daily basis and the evolution of malware to exploit new vulnerabilities. On a typical…

Cryptography and Security · Computer Science 2022-08-16 Mohammad Saidur Rahman , Scott E. Coull , Matthew Wright

In cyberattack detection and prevention systems, cybersecurity analysts always prefer solutions that are as interpretable and understandable as rule-based or signature-based detection. This is because of the need to tune and optimize these…

Cryptography and Security · Computer Science 2020-01-30 William Briguglio , Sherif Saad

Clustering algorithms have been increasingly adopted in security applications to spot dangerous or illicit activities. However, they have not been originally devised to deal with deliberate attack attempts that may aim to subvert the…

Machine Learning · Computer Science 2018-11-27 Battista Biggio , Ignazio Pillai , Samuel Rota Bulò , Davide Ariu , Marcello Pelillo , Fabio Roli

Security and Privacy are crucial in modern Internet services. Transport Layer Security (TLS) has largely addressed the issue of security. However, information about the type of service being accessed goes in plain-text in the initial…

Cryptography and Security · Computer Science 2022-07-06 Vinod S. Khandkar , Manjesh K. Hanawal , Sameer G Kulkarni