Mobile QR Code
Title Development of Prevention and Post-recovery System against the Ransomwares Attacks using the Technique of Massively Data Signing and Kernel Level Backup
Authors 박승규(Seung Kyu Park)
DOI https://doi.org/10.5573/ieie.2020.57.3.57
Page pp.57-72
ISSN 2287-5026
Keywords Ransomware ; Massively Data Signing Technique ; Kernel Level Security System ;
Abstract Recently, one of the most fatal cyber attacks is ransomware. It is a malware hacks into an user’s system through the various channels, encrypts the important data in the system, and extorts the victim into payment of ransom money for the decryption key. Despite a variety of the counter measures and the vaccine solutions appears in the market, the frequency and severity of the ransomware attacks is not reduced with the advent of Bitcoin and the RaaS(Ransomware as a Service) which make possible for the wannabe hackers to launch a ransomware campaign easily. Furthermore, the evolvement of the attacking methods makes the prevention of ransomware even more complicated. In this research, a novel way to prevent the ransomwares attacks using the massively data signing technique based on hash function and trees is proposed. Combining the proposed method with the kernel level backup technique, the realtime prevention and post-recovery system against the unknown ransomwares attacks is developed to make the user level attacks impossible. The prototype system is also implemented to evaluate the system performance. The results show that the system can prevent not only the ransaomwares but also the other various unknown malwares attacks, and be effectively utilized in both the individual and the enterprise use.