Outgoing data filtration for detecting spyware on personal computers

Khalid Samara; Aishwarya Afzulpurkar; Mouza Alshemaili

doi:10.1007/978-3-030-12839-5_32

Outgoing data filtration for detecting spyware on personal computers

Khalid Samara
, Aishwarya Afzulpurkar
, Mouza Alshemaili

Business & Management Research Institute (BMRI)

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

3 Citations (Scopus)

Abstract

One of the most critical issues emerging from the Internet is the diverse number of spyware and bots. When a spyware is installed in your PC then it will be difficult to detect, mainly because it deploys covert channels to communicate with outbound data transmissions. These attacks are usually sent from PCs infected with a bot that communicates with malicious controllers over an encrypted channel. However, the available pattern-based intrusion detection system (IDS) and antivirus systems (AVs) are unable to detect the infected PC. This paper presents a Monitoring and Filtering method (SMF) for outgoing packets based on machine learning and behavioral-based methods that can help in the protection of PCs. In addition, this paper presents recent research contributions and emerging tools in the field of spyware detection and identifies existing gaps in the literature. The paper then presents a High-level Architecture to inspect the outgoing packet from the hardware and the software installed in PCs as a solution.

Original language	English
Title of host publication	Lecture Notes on Data Engineering and Communications Technologies
Publisher	Springer
ISBN (Electronic)	9783030128395
ISBN (Print)	9783030128388
DOIs	https://doi.org/10.1007/978-3-030-12839-5_32
Publication status	Published - 6 Feb 2019
Event	International Conference on Emerging Internetworking, Data & Web Technologies (EIDWT 2019) - Fujairah Campus Duration: 26 Feb 2019 → 28 Feb 2019

Conference

Conference	International Conference on Emerging Internetworking, Data & Web Technologies (EIDWT 2019)
City	Fujairah Campus
Period	26/02/19 → 28/02/19
Other	International Conference on Emerging Internetworking, Data & Web Technologies (EIDWT 2019) (26/02/2019-28/02/2019, Fujairah Campus)

Keywords

data filtration
spyware

Access to Document

10.1007/978-3-030-12839-5_32

https://link.springer.com/chapter/10.1007/978-3-030-12839-5_32

Handle.net

Persistent link

Cite this

@inproceedings{cd30460a9ff84933aef1906069b1c748,

title = "Outgoing data filtration for detecting spyware on personal computers",

abstract = "One of the most critical issues emerging from the Internet is the diverse number of spyware and bots. When a spyware is installed in your PC then it will be difficult to detect, mainly because it deploys covert channels to communicate with outbound data transmissions. These attacks are usually sent from PCs infected with a bot that communicates with malicious controllers over an encrypted channel. However, the available pattern-based intrusion detection system (IDS) and antivirus systems (AVs) are unable to detect the infected PC. This paper presents a Monitoring and Filtering method (SMF) for outgoing packets based on machine learning and behavioral-based methods that can help in the protection of PCs. In addition, this paper presents recent research contributions and emerging tools in the field of spyware detection and identifies existing gaps in the literature. The paper then presents a High-level Architecture to inspect the outgoing packet from the hardware and the software installed in PCs as a solution.",

keywords = "data filtration, spyware",

author = "Khalid Samara and Aishwarya Afzulpurkar and Mouza Alshemaili",

year = "2019",

month = feb,

day = "6",

doi = "10.1007/978-3-030-12839-5\_32",

language = "English",

isbn = "9783030128388",

booktitle = "Lecture Notes on Data Engineering and Communications Technologies",

publisher = "Springer",

address = "Germany",

note = "International Conference on Emerging Internetworking, Data \& Web Technologies (EIDWT 2019) ; Conference date: 26-02-2019 Through 28-02-2019",

}

TY - GEN

T1 - Outgoing data filtration for detecting spyware on personal computers

AU - Samara, Khalid

AU - Afzulpurkar, Aishwarya

AU - Alshemaili, Mouza

PY - 2019/2/6

Y1 - 2019/2/6

N2 - One of the most critical issues emerging from the Internet is the diverse number of spyware and bots. When a spyware is installed in your PC then it will be difficult to detect, mainly because it deploys covert channels to communicate with outbound data transmissions. These attacks are usually sent from PCs infected with a bot that communicates with malicious controllers over an encrypted channel. However, the available pattern-based intrusion detection system (IDS) and antivirus systems (AVs) are unable to detect the infected PC. This paper presents a Monitoring and Filtering method (SMF) for outgoing packets based on machine learning and behavioral-based methods that can help in the protection of PCs. In addition, this paper presents recent research contributions and emerging tools in the field of spyware detection and identifies existing gaps in the literature. The paper then presents a High-level Architecture to inspect the outgoing packet from the hardware and the software installed in PCs as a solution.

AB - One of the most critical issues emerging from the Internet is the diverse number of spyware and bots. When a spyware is installed in your PC then it will be difficult to detect, mainly because it deploys covert channels to communicate with outbound data transmissions. These attacks are usually sent from PCs infected with a bot that communicates with malicious controllers over an encrypted channel. However, the available pattern-based intrusion detection system (IDS) and antivirus systems (AVs) are unable to detect the infected PC. This paper presents a Monitoring and Filtering method (SMF) for outgoing packets based on machine learning and behavioral-based methods that can help in the protection of PCs. In addition, this paper presents recent research contributions and emerging tools in the field of spyware detection and identifies existing gaps in the literature. The paper then presents a High-level Architecture to inspect the outgoing packet from the hardware and the software installed in PCs as a solution.

KW - data filtration

KW - spyware

U2 - 10.1007/978-3-030-12839-5_32

DO - 10.1007/978-3-030-12839-5_32

M3 - Conference contribution

SN - 9783030128388

BT - Lecture Notes on Data Engineering and Communications Technologies

PB - Springer

T2 - International Conference on Emerging Internetworking, Data & Web Technologies (EIDWT 2019)

Y2 - 26 February 2019 through 28 February 2019

ER -

Outgoing data filtration for detecting spyware on personal computers

Abstract

Conference

Keywords

Access to Document

Handle.net

Fingerprint

Cite this