This book addresses automated software fingerprinting in binary code, especially for cybersecurity applications. The reader will gain a thorough understanding of binary code analysis and several software fingerprinting techniques for cybersecurity applications, such as malware detection, vulnerability analysis, and digital forensics. More specifically, it starts with an overview of binary code analysis and its challenges, and then discusses the existing state-of-the-art approaches and their cybersecurity applications. Furthermore, it discusses and details a set of practical techniques for compiler provenance extraction, library function identification, function fingerprinting, code reuse detection, free open-source software identification, vulnerability search, and authorship attribution. It also illustrates several case studies to demonstrate the efficiency, scalability and accuracy of the above-mentioned proposed techniques and tools.
This book also introduces several innovative quantitative and qualitative techniques that synergistically leverage machine learning, program analysis, and software engineering methods to solve binary code fingerprinting problems, which are highly relevant to cybersecurity and digital forensics applications. The above-mentioned techniques are cautiously designed to gain satisfactory levels of efficiency and accuracy.
Researchers working in academia, industry and governmental agencies focusing on Cybersecurity will want to purchase this book. Software engineers and advanced-level students studying computer science, computer engineering and software engineering will also want to purchase this book.
Autorentext
Saed Alrabaee is an Assistant Professor at the Department of Information Systems and Security in United Arab Emirates University (UAEU). Prior to joining UAEU, Dr. Alrabaee was a Visiting Assistant Professor at the Department of Electrical and Computer Engineering and Computer Science at the University of New Haven (UNH), US. Dr. Alrabaee holds a Ph.D. degree in information system engineering from Concordia University in Montreal, Canada, which was executed under the supervision of Prof. Mourad Debbabi and Prof. Lingyu Wang. His research interests focus on the broad area of cybersecurity, reverse engineering, including, binary authorship attribution and characterization, malware analysis, and function fingerprinting.
Paria Shirani is a PhD candidate at the Concordia Institute for Information Systems Engineering (CIISE) at Concordia University under the supervision of Dr. Mourad Debbabi and Dr. Lingyu Wang. Paria received the National Science and Engineering Research Council (NSERC) Postdoctoral Fellowships, the most prominent postdoctoral award. During her PhD, she was awarded with Fonds de recherche du Québec Nature et technologies (FRQNT) Scholarship. Paria is currently a member at the Security Research Center at Concordia University, and has been actively working on different topics of cybersecurity, such as software fingerprinting for automated malicious code analysis and smart grid security. Her research interests are in the fields of malware analysis, IoT security, vulnerability detection, network security, and big data analysis.
Lingyu Wang is a Professor at the Concordia Institute for Information Systems Engineering (CIISE) at Concordia University, Montreal, Canada. He received his Ph.D. degree in Information Technology in 2006 from George Mason University. His research interests include cloud computing security, SDN/NFV security, security metrics, software security, and privacy. He has co-authored five books, two patents, and over 120 refereed conference and journal articles at reputable venues including TOPS, TIFS, TDSC, TMC, JCS, S&P, CCS, NDSS, ESORICS, PETS, ICDT, etc.
Amr Youssef is a professor at the Concordia Institute for Information Systems Engineering (CIISE). He received his B.Sc. and M.Sc. degrees from the Department of Electronics and Communications Engineering, Cairo University, Egypt, in 1990 and 1993, respectively, and the Ph.D. degree from the Electrical and Computer Engineering Department, Queens University, Canada, in 1997. Before joining Concordia in 2004, Dr. Youssef worked for Nortel Networks, the Center for Applied Cryptographic Research at the University of Waterloo, IBM, and Cairo University. His main research interests are in the area of cryptology and network security. Dr. Youssef has co-edited 4 books and co/authored about 200 referred papers. Dr. Youssef has served on the Technical Program Committee of more than 60 international conferences and co-chaired the workshop on Selected Areas in Cryptography (SAC) twice. Dr. Youssef is a registered professional engineer (P.Eng.) in Ontario and an IEEE senior member.
Ashkan Rahimian is a Senior Lead in security analytics at Omnia AI, Deloitte Canada's AI practice. He has 10+ years of experience leading productionalized security research and development. He leads the Cyber AI product portfolio and works as a cybersecurity and machine learning spec...
Inhalt
1 Introduction.- 2 Binary Analysis Overview.- 3 Compiler Provenance Attribution.- 4 Library Function Identification.- 5 Identifying Reused Functions in Binary Code.- 6 Function Fingerprinting.- 7 Free Open-Source Software Fingerprinting.- 8 Clone Detection.- 9 Authorship Attribution.- 10 Conclusion.
Inhalt
1 Introduction.- 2 Binary Analysis Overview.- 3 Compiler Provenance Attribution.- 4 Library Function Identification.- 5 Identifying Reused Functions in Binary Code.- 6 Function Fingerprinting.- 7 Free Open-Source Software Fingerprinting.- 8 Clone Detection.- 9 Authorship Attribution.- 10 Conclusion.
Titel
Binary Code Fingerprinting for Cybersecurity
Untertitel
Application to Malicious Code Fingerprinting
Autor
EAN
9783030342388
Format
E-Book (pdf)
Hersteller
Genre
Veröffentlichung
29.02.2020
Digitaler Kopierschutz
Wasserzeichen
Dateigrösse
8.62 MB
Anzahl Seiten
249
Unerwartete Verzögerung
Ups, ein Fehler ist aufgetreten. Bitte versuchen Sie es später noch einmal.