A Three-Level Ransomware Detection and Prevention Mechanism

Ren, Amos Lohj Yee and Liang, Chong Tze and Hyug, Im Jun and Broh, Sarfraz Nawaz and Jhanjhi, NZ (2020) A Three-Level Ransomware Detection and Prevention Mechanism. EAI Endorsed Transactions on Energy Web, 7 (27): e6. ISSN 2032-944X

[img]
Preview
Text
eai.13-7-2018.162691.pdf - Published Version
Available under License Creative Commons Attribution No Derivatives.

Download (2MB) | Preview

Abstract

Ransomware encrypts victim’s files or locks users out of the system. Victims will have to pay the attacker a ransom to decrypt and regain access to the user files. Petya targets individuals and companies through email attachments and download links. NotPetya has worm-like capabilities and exploits EternalBlue and EternalRomance vulnerabilities. Protection methods include vaccination, applying patches, et cetera. Challenges faced to combat ransomware include social engineering, outdated infrastructures, technological advancements, backup issues, and conflicts of standards. ThreeLevel Security (3LS) is a solution to ransomware that utilizes virtual machines along with browser extensions to perform a scan, on any files that the user wishes to download from the Internet. The downloaded files would be sent over a cloud server relay to a virtual machine by a browser extension. Any changes to the virtual machine after downloading the file would be observed, and if there were a malfunction in the virtual machine, the file would not be retrieved to the user’s system.

Item Type: Article
Uncontrolled Keywords: Malware, Petya, Ransomware, Security, Virtual Machine
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
QA75 Electronic computers. Computer science
Depositing User: EAI Editor II.
Date Deposited: 17 Sep 2020 10:51
Last Modified: 17 Sep 2020 10:51
URI: https://eprints.eudl.eu/id/eprint/437

Actions (login required)

View Item View Item