Research Highlight

2012-08-08
Most Influential DIMVA Paper 2004-2008 Award

In July 2012, at the DIMVA 2012 (9th Conference on Detection of Intrusions and Malware & Vulnerability Assessment) held in Heraklion, Crete, Greece, 26-27 July 2012, a publication of members of the Institute of Computer Science-FORTH, won the «Most Influential DIMVA Paper 2004-2008 Award».

Τhis publication entitled “Network-level Polymorphic Shellcode Detection using Emulation”, with authors: Michalis Polychronakis, Kostas G. Anagnostakis, and Evangelos P. Markatos, had been presented at the DIMVA 2006, in Berlin, Germany. The paper presents network-level emulation, a polymorphic shellcode detection method based on dynamic code analysis using emulation. Network-level emulation allows the detection of previously unknown attacks, while the actual execution of the attack code on a CPU emulator makes the detector robust to evasion techniques.

© Copyright 2007 FOUNDATION FOR RESEARCH & TECHNOLOGY - HELLAS, All rights reserved.