Skip to content. | Skip to navigation

Personal tools

This is SunRain Plone Theme

Navigation

You are here: Home / Publications

Abstract

Thomas C. Schmidt, Matthias Wählisch, Michael Gröning,
Context-adaptive Entropy Analysis as a Lightweight Detector of Zero-day Shellcode Intrusion for Mobiles,
In: Poster at the ACM WiSec, ACM : New York, June 2011.
[BibTeX][Abstract]

Abstract: Recent news about various attack vectors document how exploitation techniques are rapidly evolving into the mobile realm. New approaches for detecting attack traces in network traffic are needed for handheld devices that commonly own limited resources, but multiple, heterogeneous network interfaces. In this poster, we report on early results for statistical traffic analysis based on the Shannon Entropy. Unlike previous work, our time-frequency analysis extracts the non-stationary properties of entropy signals. From this context-adaptive technique, we obtain a clear signature of binary instructions and can also detect embedded shellcode.

Note: Poster

Themes: Network Security

 


This page generated by bibTOhtml on Mon 20 May 00:05:08 CEST 2019

Document Actions

« May 2019 »
May
MoTuWeThFrSaSu
12345
6789101112
13141516171819
20212223242526
2728293031
Upcoming Events
IFIP Networking Conference May 20, 2019 - May 22, 2019 — Warsaw, Poland
RIOT Hack'n'ACK (2019/05) May 28, 2019 05:00 PM - 11:00 PM — HAW Hamburg, BT7, R4.60
RIOT Hack'n'ACK (2019/06) Jun 25, 2019 05:00 PM - 11:00 PM — HAW Hamburg, BT7, R4.60
Upcoming events…