• DocumentCode
    109484
  • Title

    Beyond Blacklisting: Cyberdefense in the Era of Advanced Persistent Threats

  • Author

    Beuhring, Aaron ; Salous, Kyle

  • Volume
    12
  • Issue
    5
  • fYear
    2014
  • fDate
    Sept.-Oct. 2014
  • Firstpage
    90
  • Lastpage
    93
  • Abstract
    Signature-based detection is no longer an effective way to detect and block malware; whitelisting is much more effective. Whitelisting can vastly reduce an organization´s attack surface, letting defenders focus on more advanced threats. It also can force attackers to use expensive exploits to execute code remotely and can make it difficult for attackers to maintain persistence. Many organizations already own tools to implement whitelisting, so the only cost is the time and effort to properly implement them.
  • Keywords
    digital signatures; invasive software; advanced persistent threats; blacklisting; cyberdefense; malware; signature-based detection; whitelisting; Computer security; Cryptography; Handwriting recognition; Identification of persons; Malware; Pattern recognition; Security of data; APT; advanced persistent threats; blacklisting; computer security; cyberdefense; security; whitelisting;
  • fLanguage
    English
  • Journal_Title
    Security & Privacy, IEEE
  • Publisher
    ieee
  • ISSN
    1540-7993
  • Type

    jour

  • DOI
    10.1109/MSP.2014.86
  • Filename
    6924678
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=109484