The success of any spyware is determined by its ability to evade detection. Although traditional detection methodologies employing signature and anomaly based systems have had reasonable success, new class of spyware programs emerge which blend in with user activities to avoid detection. One of the latest anti-spyware technologies consists of a local agent that generates honeytokens of known parameters (e.g., network access requests) and tricks spyware into assuming it to be legitimate activity. This paper describes the deficiencies of static honeytoken generation and presents an attack that circumvents such detection techniques. The author synthesizes the attack by means of data mining algorithms like associative rule mining.
Did you find this white paper useful?
25 out of 50 users found this white paper useful
Related white papers
Gain a Competitive Advantage by Aligning Your IT Infrastructure with Business Objectives
This paper looks at what IT Security means to your company and how services can assist in the battle against the threats.
Raising the bar for hackers (Security)
Many production plants are linked to the Internet and utilize standard software, which makes them a potential target for hackers. Siemens is making these systems more secure.
Balancing Security Against Productivity
What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...
Secure Desktop On-Demand Webcast
The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...
Novell Zenworks Endpoint Security Management: Total Control from a Single Console
Still super gluing your USB ports shut? Unauthorized access to networks, lost or stolen laptops and other mobile hardware, and theft of proprietary information or intellectual property accounted for more...
Texcel LLC Uses Biscom Delivery Server (BDS) to Eliminate Email Attachment File Size Issues, Take the Burden Off Their Mail Server, and Send Large 3D Modeling and Design Files to Their Clients Quickly, Easily, and Securely
Texcel provides their world-wide customer base with medical device products and process development. Texcel has a department of twenty-five engineers who use SolidWorks, a 3D modeling and design software application,...
A Brief Guide to Securing Wireless Networks: Closing the Back Door in APA Style
Wireless computer networks (WLANs) are being used in greater numbers now than ever before. Due to the unprecedented mobility, convenience, and flexibility that the technology offers, homes, businesses, and enterprises...
