Prevention of hidden information security attacks by neutralizing Stego-Malware. (July 2022)
- Record Type:
- Journal Article
- Title:
- Prevention of hidden information security attacks by neutralizing Stego-Malware. (July 2022)
- Main Title:
- Prevention of hidden information security attacks by neutralizing Stego-Malware
- Authors:
- Monika, A.
Eswari, R. - Abstract:
- Highlights: Cloud computing [1] is a relatively new computer paradigm that has emerged out of possible intersection involving various genres like parallel computing, utility computing, grid computing, and other computer technologies. Cloud computingdelivers many applications like virtualization, high reliability, data storage, and high expansibility. Also, it provides on-demand and convenient network access to several inter-connected configurable computing resources (e.g., storage applications, networks, servers, and services) that may be promptly reinforced with little effort from administrators or service providers. Abstract: Cybercriminals consistently seek effective vectors to launch attacks on on-demand platforms like Cloud, thereby accurately delivering malware to the target platforms. To bypass defence mechanisms, the attackers obfuscate malware in multiple ways. Information-concealing techniques are used by hackers to bypass the existing defence mechanisms, thereby causing service disruption, loss of control, data loss, or modification of sensitive data in the cloud. This paper proposes a Stegware Neutralization model that aims to build a ubiquitous mechanism to readily counter hidden information attacks, irrespective of the obfuscation techniques used. The proposed system functions in three main phases: Steganalysis phase, Location finder and Neutralization phase. In the Steganalysis phase, the presence of obfuscated items hidden inside the digital medium isHighlights: Cloud computing [1] is a relatively new computer paradigm that has emerged out of possible intersection involving various genres like parallel computing, utility computing, grid computing, and other computer technologies. Cloud computingdelivers many applications like virtualization, high reliability, data storage, and high expansibility. Also, it provides on-demand and convenient network access to several inter-connected configurable computing resources (e.g., storage applications, networks, servers, and services) that may be promptly reinforced with little effort from administrators or service providers. Abstract: Cybercriminals consistently seek effective vectors to launch attacks on on-demand platforms like Cloud, thereby accurately delivering malware to the target platforms. To bypass defence mechanisms, the attackers obfuscate malware in multiple ways. Information-concealing techniques are used by hackers to bypass the existing defence mechanisms, thereby causing service disruption, loss of control, data loss, or modification of sensitive data in the cloud. This paper proposes a Stegware Neutralization model that aims to build a ubiquitous mechanism to readily counter hidden information attacks, irrespective of the obfuscation techniques used. The proposed system functions in three main phases: Steganalysis phase, Location finder and Neutralization phase. In the Steganalysis phase, the presence of obfuscated items hidden inside the digital medium is identified, while the location finder spots the exact location of the hidden payloads. In the Neutralization phase, location of the hidden item is neutralized by using nonlinear transfer function. The effectiveness of the proposed system is tested by analysing different image files obtained from the benchmarked database sources while checking for obfuscated malicious codes. A subset of the latest malware codes is collected from business Application Programming Interfaces (API) like VirusTotal. The experimental results show that the proposed system obtains higher accuracy rate in detecting malware i.e., ranging from 90% to 96% at different embedding rates (10% to 50%) as compared to the existing systems. Moreover, the proposed system firmly neutralizes the detected hidden malware. In fact, 97% of stegoimages are neutralized on an average by the proposed system. Also, the image files retain their original quality even after undergoing neutralization, showing hardly any perceptible change, almost missing the naked eye. Graphical abstract: Image, graphical abstract Prevention of hidden information security attacks by neutralizing Stego-Malwares: … (more)
- Is Part Of:
- Computers & electrical engineering. Volume 101(2022)
- Journal:
- Computers & electrical engineering
- Issue:
- Volume 101(2022)
- Issue Display:
- Volume 101, Issue 2022 (2022)
- Year:
- 2022
- Volume:
- 101
- Issue:
- 2022
- Issue Sort Value:
- 2022-0101-2022-0000
- Page Start:
- Page End:
- Publication Date:
- 2022-07
- Subjects:
- Stegware -- StegoImages -- Cloud security -- Matrix-Quadtrees -- Neutralization -- Nonlinear transfer function
Computer engineering -- Periodicals
Electrical engineering -- Periodicals
Electrical engineering -- Data processing -- Periodicals
Ordinateurs -- Conception et construction -- Périodiques
Électrotechnique -- Périodiques
Électrotechnique -- Informatique -- Périodiques
Computer engineering
Electrical engineering
Electrical engineering -- Data processing
Periodicals
Electronic journals
621.302854 - Journal URLs:
- http://www.sciencedirect.com/science/journal/00457906/ ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.compeleceng.2022.107990 ↗
- Languages:
- English
- ISSNs:
- 0045-7906
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.680000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 21909.xml