Data Exfiltration Threats and Prevention Techniques Machine Learning and Memory-Based Data Security,9781119898870

Data Exfiltration Threats and Prevention Techniques Machine Learning and Memory-Based Data Security

by ; ; ;
Edition: 1st
ISBN13: 9781119898870
ISBN10: 1119898870
Format: Hardcover
Pub. Date: 2023-06-07
Publisher(s): Wiley-IEEE Press
  • Free Shipping Icon

    Free Shipping On Orders Over $35

    Your order must be $35 or more to qualify for free economy shipping. Marketplace items, eBooks and apparel do not qualify towards the $35 purchase minimum.

  • eCampus.com Device Compatibility Matrix

    Click the device icon to install or view instructions

    Apple iOS | iPad, iPhone, iPod
    Apple iOS | iPad, iPhone, iPod
    Android Devices | Android Tables & Phones OS 2.2 or higher | *Kindle Fire
    Android Devices | Android Tables & Phones OS 2.2 or higher | *Kindle Fire
    Windows 10 / 8 / 7 / Vista / XP
    Windows 10 / 8 / 7 / Vista / XP
    Mac OS X | **iMac / Macbook
    Mac OS X | **iMac / Macbook
    Enjoy offline reading with these devices
    Apple Devices
    Android Devices
    Windows Devices
    Mac Devices
    iPad, iPhone, iPod
    Our reader is compatible
     
     
     
    Android 2.2 +
     
    Our reader is compatible
     
     
    Kindle Fire
     
    Our reader is compatible
     
     
    Windows
    10 / 8 / 7 / Vista / XP
     
     
    Our reader is compatible
     
    Mac
     
     
     
    Our reader is compatible
List Price: $144.00

Buy New

Usually Ships in 8 - 10 Business Days.
$143.28
Add to Cart

Rent Textbook

Select for Price
Add to Cart
There was a problem. Please try again later.

Rent Digital

Rent Digital Options
Online:1825 Days access
Downloadable:Lifetime Access
$129.60
*To support the delivery of the digital material to you, a digital delivery fee of $3.99 will be charged on each digital item.
$129.60*
Add to Cart

Used Textbook

We're Sorry
Sold Out

Buy from our Marketplace starting at $127.54

How Marketplace Works:

  • This item is offered by an independent seller and not shipped from our warehouse
  • Item details like edition and cover design may differ from our description; see seller's comments before ordering.
  • Sellers much confirm and ship within two business days; otherwise, the order will be cancelled and refunded.
  • Marketplace purchases cannot be returned to eCampus.com. Contact the seller directly for inquiries; if no response within two days, contact customer service.
  • Additional shipping costs apply to Marketplace purchases. Review shipping costs at checkout.

Summary

Comprehensive resource covering threat prevention techniques for data exfiltration and applying machine learning applications to aid in identification and prevention

Data Exfiltration Threats and Prevention Techniques provides readers the knowledge needed to prevent and protect from malware attacks by introducing existing and recently developed methods in malware protection using AI, memory forensic, and pattern matching, presenting various data exfiltration attack vectors and advanced memory-based data leakage detection, and discussing ways in which machine learning methods have a positive impact on malware detection.

Providing detailed descriptions of the recent advances in data exfiltration detection methods and technologies, the authors also discuss details of data breach countermeasures and attack scenarios to show how the reader may identify a potential cyber attack in the real world.

Composed of eight chapters, this book presents a better understanding of the core issues related to the cyber-attacks as well as the recent methods that have been developed in the field.

In Data Exfiltration Threats and Prevention Techniques, readers can expect to find detailed information on:

  • Sensitive data classification, covering text pre-processing, supervised text classification, automated text clustering, and other sensitive text detection approaches
  • Supervised machine learning technologies for intrusion detection systems, covering taxonomy and benchmarking of supervised machine learning techniques
  • Behavior-based malware detection using API-call sequences, covering API-call extraction techniques and detecting data stealing behavior based on API-call sequences
  • Memory-based sensitive data monitoring for real-time data exfiltration detection and advanced time delay data exfiltration attack and detection

Aimed at professionals and students alike, Data Exfiltration Threats and Prevention Techniques highlights a range of machine learning methods that can be used to detect potential data theft and identifies research gaps and the potential to make change in the future as technology continues to grow.

Author Biography

Nasrin Sohrabi is currently pursuing her PhD in Computer Science at RMIT. She received her Bachelor’s degree in Computer Software Engineering from Islamic Azad University, Iran.

Zahir Tari is Professor at RMIT and Research Director of the RMIT Centre of Cyber Security Research and Innovation.

Table of Contents

Acknowledgments ix

Acronyms xi

1 Introduction 5

1.1 Data Exfiltration Methods . . . . . . . . . . . . . . . . . . . . . 9

1.2 Important Questions . . . . . . . . . . . . . . . . . . . . . . . . . 14

1.3 Book Scope . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

1.4 Book Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

1.5 Book Structure . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

2 Background 29

2.1 Hidden Markov Model . . . . . . . . . . . . . . . . . . . . . . . . 29

2.2 Memory Forensics . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

2.3 Bag-of-Words Model . . . . . . . . . . . . . . . . . . . . . . . . . 42

2.4 Sparse Distributed Representation . . . . . . . . . . . . . . . . . 43

2.5 Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45

3 Data Security Threats 47

3.1 Data Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48

3.2 Security vs. Protection vs. Privacy . . . . . . . . . . . . . . . . . 53

3.3 Advanced Persistent Threats Attacks . . . . . . . . . . . . . . . 54

v

3.4 Cybersecurity Threats . . . . . . . . . . . . . . . . . . . . . . . . 58

3.5 Conclusion . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89

4 Use Cases Data Leakage Attacks 91

4.1 Most Significant Attacks . . . . . . . . . . . . . . . . . . . . . . . 91

4.2 Top Infection Vectors . . . . . . . . . . . . . . . . . . . . . . . . . 98

4.3 Top Threats of Recent Years . . . . . . . . . . . . . . . . . . . . 101

4.4 Malware Development Trends . . . . . . . . . . . . . . . . . . . . 103

4.5 Geographic Trends . . . . . . . . . . . . . . . . . . . . . . . . . . 108

4.6 Industry Trends . . . . . . . . . . . . . . . . . . . . . . . . . . . . 114

4.7 Conclusion . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116

5 Survey on Building Block Technologies 117

5.1 Motivation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 118

5.2 Background . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123

5.3 Taxonomy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137

5.4 Supervised Learning Methods . . . . . . . . . . . . . . . . . . . . 140

5.5 Systematic Literature Review . . . . . . . . . . . . . . . . . . . . 155

5.6 Evaluation of Supervised Learning Methods . . . . . . . . . . . . 156

5.7 Key Open Problems . . . . . . . . . . . . . . . . . . . . . . . . . 175

5.8 Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 178

6 Behavior-based Data Exfiltration Detection 179

6.1 Motivation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 180

6.2 Existing Methods . . . . . . . . . . . . . . . . . . . . . . . . . . . 183

vi

6.3 Sub-Curve HMM Method . . . . . . . . . . . . . . . . . . . . . . 190

6.4 Evaluation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 206

6.5 Experimental Results . . . . . . . . . . . . . . . . . . . . . . . . . 214

6.6 Discussion . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 223

6.7 Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227

7 Memory-based Data Exfiltration Detection 229

7.1 Motivation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 230

7.2 Existing Methods . . . . . . . . . . . . . . . . . . . . . . . . . . . 233

7.3 Concepts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 237

7.4 Fast lookup Bag-of-Words (FBoW) . . . . . . . . . . . . . . . . 244

7.5 Evaluation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 256

7.6 Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 278

8 Temporal-based Data Exfiltration Detection 281

8.1 Motivation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 281

8.2 Existing Methods . . . . . . . . . . . . . . . . . . . . . . . . . . . 285

8.3 Definitions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 287

8.4 Temporary Memory Bag-of-Words (TMBoW) . . . . . . . . . . 293

8.5 Experimental Results . . . . . . . . . . . . . . . . . . . . . . . . . 301

8.6 Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 314

9 Conclusion 317

An electronic version of this book is available through VitalSource.

This book is viewable on PC, Mac, iPhone, iPad, iPod Touch, and most smartphones.

By purchasing, you will be able to view this book online, as well as download it, for the chosen number of days.

Digital License

You are licensing a digital product for a set duration. Durations are set forth in the product description, with "Lifetime" typically meaning five (5) years of online access and permanent download to a supported device. All licenses are non-transferable.

More details can be found here.

A downloadable version of this book is available through the eCampus Reader or compatible Adobe readers.

Applications are available on iOS, Android, PC, Mac, and Windows Mobile platforms.

Please view the compatibility matrix prior to purchase.