检索结果-内蒙古大学图书馆

19th International Workshop on Digital Forensics and Watermarking, IWDW 2020

作者： Zhao, Xianfeng Yang, Chunfang Liu, Fenlin State Key Laboratory of Information Security Institute of Information Engineering Chinese Academy of Sciences Beijing100195 China School of Cyber Security University of Chinese Academy of Sciences Beijing100093 China State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou China

ISBN: (纸本)9783030694487

Steganography has long been considered as a way of hiding the fact of secret communication. However, the fact that a message sender and a receiver communicated with each other is seldom protected. It can be dangerous because they often have very secret relationship. Noticeably, in recent two years some researchers respectively proposed robust and secure steganographic schemes which realize dependable steganography in the lossy channel of social media without degrading the security and capacity, and more relevant technologies, such as robust steganographic coding and fast steganography, were also proposed. In this review, the sharing-based model of steganography implied by social media and promoted by both the emerging advanced robust steganography and fast steganography is formally presented and compared with the dominating prisoner-warden model. It is shown that designing steganography under the sharing-based model can protect the fact of communication and the sender-receiver relationship instead of merely the fact of secret communication, improving the overall security of steganographic systems. © 2021, Springer Nature Switzerland AG.

关键词： Steganography

来源：评论

学校读者我要写书评

暂无评论

Rapid Detection of Stego Images Based on Identifiable Features

Rapid Detection of Stego Images Based on Identifiable Featur...

引用

International Conference on advanced Communication Technology

作者： Weiwei Pang Xiangyang Luo Jie Ren Chunfang Yang Fenlin Liu State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou 450001 China

ISBN: (纸本)9781509016969

An increasing number of images in the Internet brings forward a higher requirement on the speed of steganalysis. For the problem of real-time detection of stego images, a rapid images steganalysis method based on identifiable features is proposed, where the identifiable features are specific character sequences left in stego images by steganography tools. The stego and cover images are distinguished according to whether the identifiable features are found in the detected images. Meanwhile, for the case of that multiple identifiable features appeared on the same location of an image, the AC (Aho-Corasick) multi-features matching algorithm is applied to improve the detection speed. In experiments, the detection method is used to detect eight steganography tools such as Invisible Secrets, E-Show, BMP Secrets and so on. The results show that the proposed steganalysis method can achieve a nearly perfect detection precision, and the detection speed can be improved significantly comparing with traditional methods (matching bytes one by one).

关键词： Steganalysis Identifiable features Steganography tools AC(Aho-Corasick) matching algorithm Stego image detection

来源：评论

学校读者我要写书评

暂无评论

Deity: Finding Deep Rooted Bugs in JavaScript Engines

Deity: Finding Deep Rooted Bugs in JavaScript Engines

引用

International Conference on Communication Technology (ICCT)

作者： Hongyang Lin Junhu Zhu Jianshan Peng Dixia Zhu State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou Henan China

Fuzzing [1] is a well-known technique which was employed to provide unexpected or random data as input to JavaScript engines in hopes of finding a security vulnerability. For effective fuzzing, the input must be both syntactically correct and uncommonly randomized for exceptions such as crashes, failing built-in code assertions, or potential memory leaks. In this work, we introduced system Deity which managed to resolve the conflict with innovative AST(Abstract Syntax Tree) [2] based tree mutation and generating methods. It leverages a high-level structural representation of intermediate process JavaScript code. Our evaluation demonstrates the effectiveness of Deity. For large-scale JavaScript engines (njs, mjs, Javascript-Core, ChakraCore, Espruino, Jerryscript) fuzzing, our results significantly show that Deity can improve code coverage and finding more deep rooted bugs (i.e., 35 new bugs, among which we discovered 21 new vulnerabilities with 3 CVEs assigned) over Superion and CodeAlchemist.

关键词： Engines Fuzzing Computer bugs Grammar Syntactics Tools

来源：评论

学校读者我要写书评

暂无评论

The Executors Scheduling Algorithm for the Web Server Based on the Attack Surface

The Executors Scheduling Algorithm for the Web Server Based ...

引用

Advances in Electrical engineering and Computer Applications( AEECA), 2020 IEEE International Conference on

作者： Guanglai Nie Zheng Zhang Yufeng Zhao State key Laboratory of Mathematical Engineering and Advanced Computing MEAC Zhengzhou China

ISBN: (数字)9781728165219

ISBN: (纸本)9781728165226

In the existing scheduling algorithms of mimicry structure, the random algorithm cannot solve the problem of large vulnerability window in the process of random scheduling. Based on known vulnerabilities, the algorithm with diversity and complexity as scheduling indicators can not only fail to meet the characteristic requirements of mimic's endogenous security for defense, but also cannot analyze the unknown vulnerabilities and measure the continuous differences in time of mimic Executive Entity. In this paper, from the Angle of attack surface is put forward based on mimicry attack the mimic Executive Entity scheduling algorithm, its resources to measure analysis method and mimic security has intrinsic consistency, avoids the random algorithm to vulnerability and modeling using known vulnerabilities targeted, on time at the same time can ensure the diversity of the Executive body, to mimic the attack surface web server scheduling system in continuous time is less, and able to form a continuous differences. Experiments show that the minimum symbiotic resource scheduling algorithm based on time continuity is more secure than the random scheduling algorithm.

关键词： Web servers Symbiosis Security Scheduling algorithms Cyberspace Redundancy Heuristic algorithms

来源：评论

学校读者我要写书评

暂无评论

The Stacked Seq2seq-attention Model for Protocol Fuzzing

The Stacked Seq2seq-attention Model for Protocol Fuzzing

引用

作者： Zicong Gao Weiyu Dong Rui Chang Chengwei Ai Cyberspace Security Department State Key Laboratory of Mathematical Engineering and Advanced Computing

Fuzzing is an effective approach to discover vulnerabilities in software by generating the amount of unexcepted data as inputs to a program. It is difficult to fuzz the protocol automatically because it is necessary to manually construct a template that satisfies the protocol specification to generate test cases. In this paper, we establish stacked seq2seq-attention models to generate protocol test cases automatically. Seq2seq-attention is a machine learning technique which has an encoder-decoder structure to output text sequences based on context. We evaluate the training effect of seq2seq-attention models with different layers of LSTM and point out that the highest correctness of test cases is achieved by 3 layers LSTM. Besides, we implement a fuzzer based on stacked seq2seq attention model and compare with grammar-based fuzzer, which result indicates the test cases generated by our fuzzer discover more unique basic blocks.

关键词： Machine Learning Security Seq2seq Attention Fuzzing

来源：评论

学校读者我要写书评

暂无评论

Network security assessment based on full host-based attack graph 2020

Network security assessment based on full host-based attack ...

引用

Proceedings of the 2020 International Conference on Cyberspace Innovation of advanced Technologies

作者： Xiao-fan Wang Tian-yang Zhou Jun-hu Zhu State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou Henan China

ISBN: (纸本)9781450387828

Network security assessment is an important method of evaluating network security. The existing researches of network security assessment have the problem that the method is not comprehensive and accurate. In order to solve this problem, we proposed a method of network security assessment based on a full host-based attack graph from the "point" and "plane" perspective. This method constructed a full host-based attack graph model, and proposed a splitting algorithm for weakly connected components of the full host-based attack graph. The algorithm is used to evaluate the network security from the "plane" perspective. Meanwhile, based on the full host-based attack graph and the theory of degree centrality and betweenness centrality, the key nodes in the network are evaluated. Therefore, this method accomplished the comprehensive and accurate security measurement of the network. The experimental results showed the effectiveness of the method.

关键词： Full Host-based Attack Graph

来源：评论

学校读者我要写书评

暂无评论

New Virus Infection Technology and Its Detection

New Virus Infection Technology and Its Detection

引用

IEEE International Conference on Software engineering and Service Sciences (ICSESS)

作者： Zhixu Yangchun Yuntian Zhao Ju Yang State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou Henan China

ISBN: (数字)9781728165790

ISBN: (纸本)9781728165806

Computer virus detection technology is an important basic security technology in the information age. The current detection technology has a high success rate for the detection of known viruses and known virus infection technologies, but the development of detection technology often lags behind the development of computer virus infection technology. Under Windows system, there are many kinds of file viruses, which change rapidly, and pose a continuous security threat to users. The research of new file virus infection technology can provide help for the development of virus detection technology. In this paper, a new virus infection technology based on dynamic binary analysis is proposed to execute file virus infection. Using the new virus infection technology, the infected executable file can be detected in the experimental environment. At the same time, this paper discusses the detection method of new virus infection technology. We hope to provide help for the development of virus detection technology from the perspective of virus design.

关键词： Computer viruses Instruments Resists Information age Security Viruses (medical) Software engineering

来源：评论

学校读者我要写书评

暂无评论

spotFuzzer: Static Instrument and Fuzzing Windows COTs

arXiv

引用

arXiv 2022年

作者： Gu, Yeming Shu, Hui Ma, Rongkuan Yan, Lin Zhu, Lei State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou450000 China

The security research on Windows has received little attention in the academic circle. Most of the new methods are usually designed for Linux system, and are difficult to transplant to Windows. Fuzzing for Windows programs always suffering from its closed source. Therefore, we need to find an appropriate way to achieve feedback from Windows programs. To our knowledge, there are no stable and scalable static instrumentation tools for Windows yet, and dynamic tools, such as DynamoRIO, have been criticized for their performance. To make matters worse, dynamic instrumentation tools have very limited usage scenarios and are impotent for many system services or large commercial software. In this paper, we proposed spotInstr, a novel static tool for instrumenting Windows binaries. It is lightweight and can instrument most Windows PE programs in a very short time. At the same time, spotInstr provides a set of filters, which can be used to select instrumentation points or restrict the target regions. Based on these filters, we propose a novel memory-sensitive instrumentation method which can speed up both instrumentation and fuzzing. After that, we design a system called spotFuzzer, which leverage the ability of spotInstr and can fuzz most Windows binaries. We tested spotInstr and spotFuzzer in multiple dimensions to show their superior performance and stability. Copyright © 2022, The Authors. All rights reserved.

关键词： Computer operating systems

来源：评论

学校读者我要写书评

暂无评论

Dynamic program behavior model based on layered dependencies

Dynamic program behavior model based on layered dependencies

引用

IEEE International Conference on Software engineering and Service Sciences (ICSESS)

作者： Chao Fan Rongcai Zhao Zheng Shan Hongbo Cai State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou Henan China

ISBN: (纸本)9781479983544

It is effective to ensure the credibility of program to monitor the real-time status in the whole process when the program is been executed. Aiming at the problem of high convexity of feature extracting and interaction between false positive and false negative rate in current study, this paper proposed one kind of program behaviour model based on the dependencies. It constituted variable-length system call sequences according to the sifting and relevance analysing of system calls generated from running program. We can get the feature sequence through layered analysing, aggregation and simplification. Experiments on the selected samples show that the model is feasible and has better control on false positive and false negative rate.

关键词： Feature extraction Instruments Malware Intrusion detection Kernel Databases

来源：评论

学校读者我要写书评

暂无评论

Extraction of Secret Message Based on Uniformly Most Powerful Test

SSRN

引用

SSRN 2022年

作者： Du, Hansong Liu, Jiufen Luo, Xiangyang Zhang, Yi The State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou450001 China

As the ultimate goal of steganalysis, secret message extraction is a bottleneck and difficulty that has long plagued the development of steganalysis technology. Existing pioneering work on secret message extraction for adaptive steganography based on STC (Syndrome-Trellis Codes): the method based on randomness test under plaintext embedding may misjudge incorrect steganographic key as correct steganographic key, resulting in the failure of extraction. For this reason, a method for extracting message with 100% accuracy for plaintext embedding is proposed in this manuscript. First, by analyzing the probability distribution of stego images, a theorem is given: For STC-based adaptive steganography algorithm, the sequences extracted by correct and incorrect steganographic keys are statistically different. Then based on this theorem, a uniformly most powerful test model is designed to recover the correct steganographic key. Finally, given the probability of type I and II errors, the sample size and threshold in the hypothesis test are derived. Classic adaptive steganography such as HUGO (Highly Undetectable Steganography) and J-UNIWARD (JPEG Universal Wavelet Relative Distortion) have been conducted experiment, showing that the proposed method can extract message with 100% accuracy and 44 bits sample size, which verifies the correctness of the theorem and the effectiveness of the method. © 2022, The Authors. All rights reserved.

关键词： Steganography

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：