Ransomware protection using the moving target defense perspective
- Authors
- Lee, Suhyeon; Kim, Huy Kang; Kim, Kyounggon
- Issue Date
- Sep-2019
- Publisher
- PERGAMON-ELSEVIER SCIENCE LTD
- Keywords
- Ransomware; Malware; Moving target defense; File extension; Randomization
- Citation
- COMPUTERS & ELECTRICAL ENGINEERING, v.78, pp.288 - 299
- Indexed
- SCIE
SCOPUS
- Journal Title
- COMPUTERS & ELECTRICAL ENGINEERING
- Volume
- 78
- Start Page
- 288
- End Page
- 299
- URI
- https://scholar.korea.ac.kr/handle/2021.sw.korea/63415
- DOI
- 10.1016/j.compeleceng.2019.07.014
- ISSN
- 0045-7906
- Abstract
- Ransomware has become the most dangerous threat today because of its unique and destructive characteristics. Ransomware encrypts the victim's important files and then requires money to decrypt them. Ransomware has become among the most preferred measures for cybercriminals to earn money. Moreover, the technology for producing ransomware continues to evolve; as a result, it has becomes more difficult to defend. In this study, we analyze major ransomware including WannaCry and propose a method to protect valuable files from existing ransomware. To this end, the moving target defense method is applied by randomly changing the file extensions that ransomware attempts to encrypt. We show that our proposed method can successfully protect files from ransomware. Finally, we present the proposed method which can be reasonably used without performance degradation. (C) 2019 Elsevier Ltd. All rights reserved.
- Files in This Item
- There are no files associated with this item.
- Appears in
Collections - School of Cyber Security > Department of Information Security > 1. Journal Articles
![qrcode](https://api.qrserver.com/v1/create-qr-code/?size=55x55&data=https://scholar.korea.ac.kr/handle/2021.sw.korea/63415)
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.