DocumentCode
244837
Title
Extending Advanced Evasion Techniques Using Combinatorial Search
Author
Chammem, Mhamed ; Hamdi, Mohamed ; Tai-Hoon Kim
Author_Institution
IsetCom, Tunis, Tunisia
fYear
2014
fDate
20-23 Dec. 2014
Firstpage
41
Lastpage
46
Abstract
In this paper, we extend the concept of Advanced Evasion Techniques (AETs) by exploring new alternatives to reduce the complexity of existing evasion tools. The major objective is to enhance the security testing potential brought by AETs by increasing the number of combinations that can be tested and checked on the Device Under Test (DUT). We analyze the performance of non-exhaustive search strategies by the use of clusters where multiple evasion techniques are combined. To this end, we propose the use of probabilistic trees to design scenario-based AETs where multiple architectures are considered. For an accurate analysis of the contribution resulting from the proposed idea, we illustrate our idea using a practical evasion tool, namely the EVADER tool designed by McAfee.
Keywords
probability; program testing; search problems; security of data; trees (mathematics); DUT; EVADER tool; advanced evasion techniques; combinatorial search; device under test; probabilistic trees; scenario-based AET design; security testing potential; Complexity theory; Computer crime; IP networks; Malware; Protocols; Testing; Advanced Evasion Techniques; combinatorial search; probabilistic trees;
fLanguage
English
Publisher
ieee
Conference_Titel
Security Technology (SecTech), 2014 7th International Conference on
Conference_Location
Haikou
Print_ISBN
978-1-4799-7775-8
Type
conf
DOI
10.1109/SecTech.2014.18
Filename
7023282
Link To Document