• DocumentCode
    244837
  • Title

    Extending Advanced Evasion Techniques Using Combinatorial Search

  • Author

    Chammem, Mhamed ; Hamdi, Mohamed ; Tai-Hoon Kim

  • Author_Institution
    IsetCom, Tunis, Tunisia
  • fYear
    2014
  • fDate
    20-23 Dec. 2014
  • Firstpage
    41
  • Lastpage
    46
  • Abstract
    In this paper, we extend the concept of Advanced Evasion Techniques (AETs) by exploring new alternatives to reduce the complexity of existing evasion tools. The major objective is to enhance the security testing potential brought by AETs by increasing the number of combinations that can be tested and checked on the Device Under Test (DUT). We analyze the performance of non-exhaustive search strategies by the use of clusters where multiple evasion techniques are combined. To this end, we propose the use of probabilistic trees to design scenario-based AETs where multiple architectures are considered. For an accurate analysis of the contribution resulting from the proposed idea, we illustrate our idea using a practical evasion tool, namely the EVADER tool designed by McAfee.
  • Keywords
    probability; program testing; search problems; security of data; trees (mathematics); DUT; EVADER tool; advanced evasion techniques; combinatorial search; device under test; probabilistic trees; scenario-based AET design; security testing potential; Complexity theory; Computer crime; IP networks; Malware; Protocols; Testing; Advanced Evasion Techniques; combinatorial search; probabilistic trees;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security Technology (SecTech), 2014 7th International Conference on
  • Conference_Location
    Haikou
  • Print_ISBN
    978-1-4799-7775-8
  • Type

    conf

  • DOI
    10.1109/SecTech.2014.18
  • Filename
    7023282
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=244837