Binary Code Fingerprinting for Cybersecurity: Application to Malicious Code Fingerprinting
暫譯: 網路安全中的二進位碼指紋技術:應用於惡意程式碼指紋識別
Alrabaee, Saed, Debbabi, Mourad, Shirani, Paria
相關主題
商品描述
This book also introduces several innovative quantitative and qualitative techniques that synergistically leverage machine learning, program analysis, and software engineering methods to solve binary code fingerprinting problems, which are highly relevant to cybersecurity and digital forensics applications. The above-mentioned techniques are cautiously designed to gain satisfactory levels of efficiency and accuracy.
Researchers working in academia, industry and governmental agencies focusing on Cybersecurity will want to purchase this book. Software engineers and advanced-level students studying computer science, computer engineering and software engineering will also want to purchase this book.
商品描述(中文翻譯)
本書探討了二進位程式碼中的自動化軟體指紋識別,特別是針對網路安全應用。讀者將深入了解二進位程式碼分析及多種針對網路安全應用的軟體指紋識別技術,例如惡意程式檢測、漏洞分析和數位取證。更具體地說,本書首先概述了二進位程式碼分析及其挑戰,然後討論現有的最先進方法及其在網路安全中的應用。此外,本書詳細討論了一組實用技術,包括編譯器來源提取、函式庫功能識別、函式指紋識別、程式碼重用檢測、自由開源軟體識別、漏洞搜尋和作者歸屬分析。它還通過幾個案例研究來展示上述提議技術和工具的效率、可擴展性和準確性。
本書還介紹了幾種創新的定量和定性技術,這些技術協同利用機器學習、程式分析和軟體工程方法來解決與網路安全和數位取證應用高度相關的二進位程式碼指紋識別問題。上述技術經過謹慎設計,以達到令人滿意的效率和準確性。
專注於網路安全的學術界、產業界和政府機構的研究人員將希望購買本書。學習計算機科學、計算機工程和軟體工程的軟體工程師和高級學生也將希望購買本書。
作者簡介
Mourad Debbabi is a Full Professor at the Concordia Institute for Information Systems Engineering (CIISE) and Associate Dean Research and Graduate Studies at the Gina Cody School of Engineering and Computer Science. He holds the NSERC/Hydro-Québec Thales Senior Industrial Research Chair in Smart Grid Security and the Concordia Research Chair Tier I in Information Systems Security. He is also the President of the National Cyber Forensics and Training Alliance (NCFTA) Canada, and a member of CATAAlliance's Cybercrime Advisory Council. He is the founder and one of the leaders of the Security Research Centre at Concordia University. Dr. Debbabi holds Ph.D. and M.Sc. degrees in computer science from Paris-XI Orsay, University, France. He published 3 books and more than 260 peer-reviewed research articles in international journals and conferences on cybersecurity, cyber forensics, privacy, cryptographic protocols, threat intelligence generation, malware analysis, smart grid security, reverse engineering, specification and verification of safety-critical systems, programming languages and type theory. He supervised to successful completion of 30 Ph.D. students and more than 70 Master students.
Paria Shirani is a PhD candidate at the Concordia Institute for Information Systems Engineering (CIISE) at Concordia University under the supervision of Dr. Mourad Debbabi and Dr. Lingyu Wang. Paria received the National Science and Engineering Research Council (NSERC) Postdoctoral Fellowships, the most prominent postdoctoral award. During her PhD, she was awarded with Fonds de recherche du Québec - Nature et technologies (FRQNT) Scholarship. Paria is currently a member at the Security Research Center at Concordia University, and has been actively working on different topics of cybersecurity, such as software fingerprinting for automated malicious code analysis and smart grid security. Her research interests are in the fields of malware analysis, IoT security, vulnerability detection, network security, and big data analysis.
Lingyu Wang is a Professor at the Concordia Institute for Information Systems Engineering (CIISE) at Concordia University, Montreal, Canada. He received his Ph.D. degree in Information Technology in 2006 from George Mason University. His research interests include cloud computing security, SDN/NFV security, security metrics, software security, and privacy. He has co-authored five books, two patents, and over 120 refereed conference and journal articles at reputable venues including TOPS, TIFS, TDSC, TMC, JCS, S&P, CCS, NDSS, ESORICS, PETS, ICDT, etc.
Amr Youssef is a professor at the Concordia Institute for Information Systems Engineering (CIISE). He received his B.Sc. and M.Sc. degrees from the Department of Electronics and Communications Engineering, Cairo University, Egypt, in 1990 and 1993, respectively, and the Ph.D. degree from the Electrical and Computer Engineering Department, Queens University, Canada, in 1997. Before joining Concordia in 2004, Dr. Youssef worked for Nortel Networks, the Center for Applied Cryptographic Research at the University of Waterloo, IBM, and Cairo University. His main research interests are in the area of cryptology and network security. Dr. Youssef has co-edited 4 books and co/authored about 200 referred papers. Dr. Youssef has served on the Technical Program Committee of more than 60 international conferences and co-chaired the workshop on Selected Areas in Cryptography (SAC) twice. Dr. Youssef is a registered professional engineer (P.Eng.) in Ontario and an IEEE senior member.
Ashkan Rahimian is a Senior Lead in security analytics at Omnia AI, Deloitte Canada's AI practice. He has 10+ years of experience leading productionalized security research and development. He leads the Cyber AI product portfolio and works as a cybersecurity and machine learning specialist. Ashkan's focus is on the design and development of intelligence-driven security models for predictive analytics, UEBA, and proactive threat hunting. Mr. Rahimian holds two Master's degrees in Information Systems Security and Artificial Intelligence and Robotics. He conducted his research under the supervision of Prof. Mourad Debbabi at Concordia University, Montreal, Canada.
Lina Nouh is a Business Analyst at Deloitte Digital Middle East, Riyadh, Saudi Arabia. She received her MAsc in Information Systems Security in 2017 from Concordia University, Montreal, Canada under the supervision of Prof. Mourad Debbabi and Dr. Aiman Hanna. Lina also received her Bachelor of Science in Software Engineering in 2014 from Concordia University, Montreal, Canada. Lina has been always an outstanding student, which has been recognized by receiving the prestigious Dean's list award during all her Bachelor's studies.
Djedjiga Mouheb is an Assistant Professor at the Department of Computer Science, College of Sciences at University of Sharjah, UAE. Dr. Mouheb holds a Ph.D. degree in information system engineering from Concordia University in Montreal, Canada, which was executed under the supervision of Prof. Mourad Debbabi and Prof. Lingyu Wang. Her research interests focus on cybersecurity, including social networking security, malware analysis, software fingerprinting, cyber-threat intelligence, secure software and systems engineering.
He Huang is currently a software engineer at the Moody's Analytics Canada. He received his MAsc in Information Systems Security from Concordia University, Montreal, Canada under the supervision of Prof. Mourad Debbabi and Prof. Amr Youssef, and his Bachelor of Science in Information Security from Huazhong University of Science and Technology.
Aiman Hanna is a Professor at the Department of Computer Science and Software Engineering at the Gina Cody School of Engineering and Computer Science, Concordia University, Montreal, Canada, where he has been teaching for nearly 30 years. He has been the recipient of multiple Excellence and Outstanding Contribution Awards, as well as the OCTAS'2009 Award, Fédération de l'Informatique du Québec (FIQ), 2009. He has additionally been nominated for the Prix du Ministre de l'Éducation de Quebec in 2016. Dr. Hanna is a registered Professional Engineer, and a member of Professional Engineers Ontario (PEO), Canada. He has many years of industrial experience working for some of the largest Canadian firms including Bell Canada/Bell Sygma & CGI. Dr. Hanna holds Ph.D. and M.Sc. degrees in Computer Science from Concordia University, Montreal, Canada. His research focus is on the areas of software security, cybersecurity, software fingerprinting, big-data and container's security, video conferencing, and networking and data communications.
作者簡介(中文翻譯)
Saed Alrabaee 是阿拉伯聯合大公國大學 (UAEU) 資訊系統與安全系的助理教授。在加入UAEU之前,Alrabaee博士曾擔任美國紐黑文大學 (UNH) 電機與計算機工程及計算機科學系的訪問助理教授。Alrabaee博士擁有加拿大蒙特利爾的康考迪亞大學資訊系統工程博士學位,該學位是在Mourad Debbabi教授和Lingyu Wang教授的指導下完成的。他的研究興趣集中在網絡安全、逆向工程的廣泛領域,包括二進制作者歸屬性和特徵分析、惡意軟件分析和函數指紋識別。
Mourad Debbabi 是康考迪亞資訊系統工程研究所 (CIISE) 的正教授,並擔任吉娜·科迪工程與計算機科學學院的研究與研究生院副院長。他擁有NSERC/Hydro-Québec Thales智能電網安全高級工業研究主席和康考迪亞研究主席Tier I的資訊系統安全職位。他還是加拿大國家網絡取證與培訓聯盟 (NCFTA) 的主席,以及CATAAlliance網絡犯罪諮詢委員會的成員。他是康考迪亞大學安全研究中心的創始人之一和領導者之一。Debbabi博士擁有法國巴黎第十一大學的計算機科學博士和碩士學位。他在網絡安全、網絡取證、隱私、密碼協議、威脅情報生成、惡意軟件分析、智能電網安全、逆向工程、安全關鍵系統的規範與驗證、編程語言和類型理論等領域發表了3本書和超過260篇經過同行評審的研究文章。他成功指導了30名博士生和70多名碩士生的完成。
Paria Shirani 是康考迪亞資訊系統工程研究所 (CIISE) 的博士候選人,並在Mourad Debbabi博士和Lingyu Wang博士的指導下進行研究。Paria獲得了國家科學與工程研究委員會 (NSERC) 的博士後獎學金,這是最具聲望的博士後獎項。在她的博士學位期間,她獲得了魁北克自然與技術研究基金 (FRQNT) 獎學金。Paria目前是康考迪亞大學安全研究中心的成員,並積極從事不同的網絡安全主題研究,如自動化惡意代碼分析的軟件指紋識別和智能電網安全。她的研究興趣包括惡意軟件分析、物聯網安全、漏洞檢測、網絡安全和大數據分析。
Lingyu Wang 是康考迪亞資訊系統工程研究所 (CIISE) 的教授,位於加拿大蒙特利爾。他於2006年在喬治梅森大學獲得資訊技術博士學位。他的研究興趣包括雲計算安全、SDN/NFV安全、安全度量、軟件安全和隱私。他共同撰寫了五本書、兩項專利,以及在TOPS、TIFS、TDSC、TMC、JCS、S&P、CCS、NDSS、ESORICS、PETS、ICDT等知名會議和期刊上發表了超過120篇經過審核的會議和期刊文章。
Amr Youssef 是康考迪亞資訊系統工程研究所 (CIISE) 的教授。他於1990年和1993年分別在埃及開羅大學電子與通信工程系獲得學士和碩士學位,並於1997年在加拿大女王大學的電機與計算機工程系獲得博士學位。在2004年加入康考迪亞之前,Youssef博士曾在Nortel Networks、滑鐵盧大學應用密碼研究中心、IBM和開羅大學工作。他的主要研究興趣在於密碼學和網絡安全。Youssef博士共同編輯了4本書,並共同/獨立撰寫了約200篇經過審核的論文。Youssef博士曾在60多個國際會議的技術程序委員會任職,並兩次共同主持選定領域的密碼學研討會 (SAC)。Youssef博士是安大略省的註冊專業工程師 (P.Eng.),也是IEEE的高級會員。
Ashkan Rahimian 是德勤加拿大 (Deloitte Canada) 的Omnia AI安全分析高級負責人。他擁有超過10年的經驗,領導生產化的安全研究和開發。他負責Cyber AI產品組合,並擔任網絡安全和機器學習專家。Ashkan專注於設計和開發基於智能的安全模型,用於預測分析、UEBA和主動威脅獵捕。Rahimian先生擁有資訊系統安全和人工智慧與機器人學的兩個碩士學位。他在加拿大蒙特利爾的康考迪亞大學,在Mourad Debbabi教授的指導下進行研究。
Lina Nouh 是德勤數位中東 (Deloitte Digital Middle East) 的商業分析師,位於沙烏地阿拉伯的利雅德。她於2017年在加拿大蒙特利爾的康考迪亞大學獲得資訊系統安全碩士學位,並在Mourad Debbabi教授和Aiman Hanna博士的指導下完成。Lina於2014年在康考迪亞大學獲得軟件工程學士學位。Lina一直是一位優秀的學生,並在她的學士學習期間獲得了著名的院長名單獎。
Djedjiga Mouheb 是阿聯酋沙迦大學 (University of Sharjah) 科學學院計算機科學系的助理教授。Mouheb博士擁有加拿大蒙特利爾的康考迪亞大學資訊系統工程博士學位,該學位是在Mourad Debbabi教授和Lingyu Wang教授的指導下完成的。她的研究興趣集中在網絡安全,包括社交網絡安全、惡意軟件分析、軟件指紋識別、網絡威脅情報、安全軟件和系統工程。
He Huang 目前是穆迪分析 (Moody's Analytics) 加拿大的軟件工程師。他在加拿大蒙特利爾的康考迪亞大學獲得資訊系統安全碩士學位,並在Mourad Debbabi教授和Amr Youssef教授的指導下完成,並在華中科技大學獲得資訊安全學士學位。
Aiman Hanna 是康考迪亞大學吉娜·科迪工程與計算機科學學院計算機科學與軟件工程系的教授,已教授近30年。他曾獲得多項卓越和傑出貢獻獎,以及2009年魁北克資訊聯盟 (FIQ) 的OCTAS'2009獎。他還於2016年被提名為魁北克教育部長獎。Hanna博士是註冊專業工程師,也是加拿大安大略省專業工程師協會 (PEO) 的成員。他在一些最大的加拿大公司(包括Bell Canada/Bell Sygma和CGI)擁有多年工業經驗。Hanna博士擁有加拿大蒙特利爾康考迪亞大學的計算機科學博士和碩士學位。他的研究重點是軟件安全、網絡安全、軟件指紋識別、大數據和容器安全、視頻會議以及網絡和數據通信等領域。
