Malware: Handbook of Prevention and Detection

Gritzalis, Dimitris, Choo, Kim-Kwang Raymond, Patsakis, Constantinos

  • 出版商: Springer
  • 出版日期: 2024-11-15
  • 售價: $9,610
  • 貴賓價: 9.5$9,130
  • 語言: 英文
  • 頁數: 141
  • 裝訂: Hardcover - also called cloth, retail trade, or trade
  • ISBN: 303166244X
  • ISBN-13: 9783031662447
  • 海外代購書籍(需單獨結帳)

相關主題

商品描述

This book provides a holistic overview of current state of the art and practice in malware research as well as the challenges of malware research from multiple angles. It also provides step-by-step guides in various practical problems, such as unpacking real-world malware and dissecting it to collect and perform a forensic analysis. Similarly, it includes a guide on how to apply state-of-the-art Machine Learning methods to classify malware. Acknowledging that the latter is a serious trend in malware, one part of the book is devoted to providing the reader with the state-of-the-art in Machine Learning methods in malware classification, highlighting the different approaches that are used for, e.g., mobile malware samples and introducing the reader to the challenges that are faced when shifting from a lab to production environment.

Modern malware is fueling a worldwide underground economy. The research for this book is backed by theoretical models that simulate how malware propagates and how the spread could be mitigated. The necessary mathematical foundations and probabilistic theoretical models are introduced, and practical results are demonstrated to showcase the efficacy of such models in detecting and countering malware. It presents an outline of the methods that malware authors use to evade detection. This book also provides a thorough overview of the ecosystem, its dynamics and the geopolitical implications are introduced. The latter are complemented by a legal perspective from the African legislative efforts, to allow the reader to understand the human and social impact of malware.

This book is designed mainly for researchers and advanced-level computer science students trying to understand the current landscape in malware, as well as applying artificial intelligence and machine learning in malware detection and classification. Professionals who are searching for a perspective to streamline the challenges that arise, when bringing lab solutions into a production environment, and how to timely identify ransomware signals at scale will also want to purchase this book. Beyond data protection experts, who would like to understand how malware siphons private information, experts from law enforcement authorities and the judiciary system, who want to keep up with the recent developments will find this book valuable as well.

商品描述(中文翻譯)

本書提供了當前惡意軟體研究的最新狀態和實踐的整體概述,以及從多個角度探討惡意軟體研究所面臨的挑戰。它還提供了針對各種實際問題的逐步指南,例如解包真實世界的惡意軟體並進行剖析以收集數據並執行取證分析。同樣,本書還包括如何應用最先進的機器學習方法來分類惡意軟體的指南。考慮到後者在惡意軟體中是一個嚴重的趨勢,本書的一部分專門致力於向讀者提供惡意軟體分類中最先進的機器學習方法,強調用於例如行動惡意軟體樣本的不同方法,並介紹讀者在從實驗室轉向生產環境時所面臨的挑戰。

現代惡意軟體正在推動全球地下經濟。本書的研究基於理論模型,模擬惡意軟體的傳播方式以及如何減輕其擴散。必要的數學基礎和概率理論模型被引入,並展示實際結果以展示這些模型在檢測和對抗惡意軟體方面的有效性。本書概述了惡意軟體作者用來逃避檢測的方法。它還提供了生態系統的全面概述,介紹其動態及其地緣政治影響。後者還補充了來自非洲立法努力的法律視角,以幫助讀者理解惡意軟體對人類和社會的影響。

本書主要為研究人員和高級計算機科學學生設計,旨在幫助他們理解當前惡意軟體的格局,以及在惡意軟體檢測和分類中應用人工智慧和機器學習。尋求簡化將實驗室解決方案帶入生產環境時所出現的挑戰的專業人士,以及希望及時識別大規模勒索軟體信號的人士,也會希望購買本書。除了數據保護專家希望了解惡意軟體如何竊取私人信息外,來自執法機構和司法系統的專家也會發現本書對於跟上最近發展非常有價值。

作者簡介

Dimitris Gritzalis is a Professor of Cybersecurity with the Dept. of Informatics of the Athens University of Economics & Business (AUEB), Greece, where he also serves as Director of the M.Sc. Programme on Information Systems Security and Development, and Director of the Information Security and Critical Infrastructure Protection Research Group. He received degrees in Mathematics (B.Sc., University of Patras, Greece), Computer Science (M.Sc., City University of New York, USA), and Information Systems Security (Ph.D., University of the Aegean, Greece). He has served as Vice Rector for Research (AUEB), Associate Data Protection Commissioner of Greece, and President of the Greek Computer Society. He is the academic editor of the Computers & Security journal (Elsevier), and the scientific editor of the International Journal of Critical Infrastructure Protection (Elsevier). He has authored numerous publications in journals and peer-reviewed conferences, and participated in several national and international R&D and consultancy projects. His current areas of research include cybersecurity governance, critical infrastructure protection, malware, risk assessment, and cybersecurity education.

Kim-Kwang Raymond Choo holds the Cloud Technology Endowed Professorship at The University of Texas at San Antonio, USA. He is the founding co-Editor-in-Chief of ACM Distributed Ledger Technologies: Research & Practice, and the founding Chair of IEEE Technology and Engineering Management Society Technical Committee on Blockchain and Distributed Ledger Technologies. His research on cyber analytics, security, and forensics has been funded by organizations in U.S. (National Aeronautics and Space Administration, National Security Agency, National Science Foun-dation, Dept. of Defense, Dept. of Homeland Security, Office of Juvenile Justice and Delinquency, CPS Energy, LGS Innovations, MITRE, Texas National Security Network Excellence Fund) and Australia (National Health and Medical Research Council, Australian Government National Drug Law Enforcement Research Fund, Australian Government Cooperative Research Centre for Data to Decision, Lockheed Martin Australia, auDA Foundation, Government of South Australia, BAE Systems stratsec, Australasian Institute of Judicial Administration Inc., Australian Research Council).

Constantinos Patsakis is an Associate Professor with the Dept. of Informatics of the University of Piraeus, Greece and an Adjunct Researcher at the Athena Research and Innovation Center. He received the B.Sc. degree in Mathematics from the University of Athens, Greece, the M.Sc. degree in Information Security from Royal Holloway, University of London, United Kingdom, and the Ph.D. degree in Cryptography and Malware from the University of Piraeus, Greece. In the past, he has worked as a Researcher at the UNESCO Chair in Data Privacy at Rovira i Virgili, at Trinity College, Ireland, and at the Luxembourg Institute of Science and Technology. Luxembourg. He has authored numerous publications in peer-reviewed international conferences and journals and participated in several national and European R&D projects. His main areas of research include cryptography, security, privacy, blockchains, and cybercrime.

作者簡介(中文翻譯)

Dimitris Gritzalis 是希臘雅典經濟與商業大學 (AUEB) 資訊學系的網路安全教授,並擔任資訊系統安全與發展碩士課程的主任,以及資訊安全與關鍵基礎設施保護研究小組的主任。他擁有數學學士學位(希臘帕特雷斯大學)、計算機科學碩士學位(美國紐約市立大學)和資訊系統安全博士學位(希臘愛琴海大學)。他曾擔任 AUEB 的研究副校長、希臘數據保護副專員,以及希臘計算機學會的會長。他是《Computers & Security》期刊(Elsevier)的學術編輯,以及《International Journal of Critical Infrastructure Protection》(Elsevier)的科學編輯。他在期刊和同行評審會議上發表了大量出版物,並參與了多個國內和國際的研發及顧問項目。他目前的研究領域包括網路安全治理、關鍵基礎設施保護、惡意軟體、風險評估和網路安全教育。

Kim-Kwang Raymond Choo 擔任美國德克薩斯州聖安東尼奧大學的雲技術講座教授。他是《ACM Distributed Ledger Technologies: Research & Practice》的創始共同主編,以及 IEEE 技術與工程管理學會區塊鏈與分散式帳本技術技術委員會的創始主席。他在網路分析、安全和取證方面的研究得到了美國(國家航空暨太空總署、國家安全局、國家科學基金會、國防部、國土安全部、青少年司法與犯罪處、CPS Energy、LGS Innovations、MITRE、德克薩斯國家安全網絡卓越基金)和澳大利亞(國家健康與醫學研究委員會、澳大利亞政府國家毒品法執行研究基金、澳大利亞政府數據決策合作研究中心、洛克希德·馬丁澳大利亞、auDA 基金會、南澳大利亞政府、BAE Systems stratsec、澳大利亞司法管理學會、澳大利亞研究委員會)等機構的資助。

Constantinos Patsakis 是希臘比雷埃夫斯大學資訊學系的副教授,並擔任雅典研究與創新中心的兼任研究員。他在希臘雅典大學獲得數學學士學位,在英國倫敦皇家霍洛威大學獲得資訊安全碩士學位,並在希臘比雷埃夫斯大學獲得密碼學與惡意軟體博士學位。過去,他曾在羅維拉 i 維爾基大學的聯合國教科文組織數據隱私講座、愛爾蘭三一學院和盧森堡科學與技術研究所工作。他在國際同行評審會議和期刊上發表了大量出版物,並參與了多個國內和歐洲的研發項目。他的主要研究領域包括密碼學、安全、隱私、區塊鏈和網路犯罪。