设为首页  |  加入收藏
站内搜索:
研究生管理系统入口 调剂报名系统 International Student 登录入口
 学院首页  学院概况  本科生教学  研究生教学  科学研究  实践教学  学生工作  国际教育  信息服务 
  通知公告   
 
 通知公告 
 新闻动态 
 校园生活 
 院务公开 
 招生专栏 
 招聘专栏 
 
 
当前位置: 学院首页>>通知公告>>正文
 

学术报告:美国韦恩州立大学张锋巍教授学术报告会

2018年05月15日 16:39  点击:[]

报告时间:2018年5月16日14:00-17:00

报告地点:中南大学校本部升华北楼409会议室

报告题目:Transparent Malware Analysis on x86 and ARM

报告人:张锋巍博士,美国韦恩州立大学(Wayne State University)助理教授

报告摘要:With the rapid proliferation of malware attacks on the Internet, understanding these malicious behaviors plays a critical role in crafting effective defense. Existing malware analysis platforms leave detectable fingerprints like uncommon string propertiesin QEMU, signatures in Linux kernel profiles,and artifacts on basic instruction execution semantics. Since these fingerprints provide the malware a chance to split its behavior depending on whether the analysis system is present or not, existing analysis systems are not sufficient to analyze the sophisticated malware. In this talk, I will present the framework for transparent malware analysis, which leverages the hardware features in existing PC and mobile devices to increase the transparency of malware analysis. In particular, I will introduce MalT on the x86 architecture and Ninja on the ARM architecture. MalT uses the system management mode as the execution environment and performance monitor unit as hardware assistant to facilitate the analysis, whereas Ninja involves the TrustZone technology and embedded trace macrocell to improve the transparency. Moreover, both MalT and Ninja are OS-agnostic, and do not require modification to the operation system or the target application.

报告人简介:Dr. Fengwei Zhang is an Assistant Professor and Director of the COMputer And Systems Security (COMPASS) lab at Wayne State University. He received his Ph.D. degree in computer science from George Mason University in 2015. His research interests are in the areas of systems security, with a focus on trustworthy execution, transparent malware debugging, transportation security, and plausible deniability encryption. He has been published at top security venues including IEEE S&P, USENIX Security, NDSS, IEEE TIFS, and IEEE TDSC. He is a recipient of the Distinguished Paper Award in ACSAC 2017.

上一条:学术报告:美国韦恩州立大学施巍松教授学术报告会 下一条:学术报告:清华大学朱文武教授学术报告会

关闭

分享到: 更多
 
 
 

Copyright © 2010-2014   中南大学软件学院  地址:湖南省长沙市中南大学铁道校区   邮编:410075  电话:0731-82656877