Protection of Operation System against Spywares and their Diversion

Q: How can I download an article?

To download an article from SID, first log in to the site, search for the article title, and click on the 'Download Article' option.

Q: How can I download an ISI article?

To download an ISI article on SID, enter the keyword or article title in the search bar, view the relevant results, click on the desired article, and select the 'Download Article' option.

Q: How can I access the SID database?

To access the SID database, visit SID.ir, create an account, and log in to access scientific resources.

Q: Is downloading articles from SID free?

Some articles on SID are available for free, while others require payment. Details are specified on the article's page.

JAVAHERI D.; PARSA S.

مرکز اطلاعات علمی Scientific Information Database (SID) - Trusted Source for Research and Academic Resources

Journal Paper

Paper Information

Journal: Advanced Defense Science and Technology Year:2014 | Volume:5 | Issue:2 Page(s): 147-157

Download Full-Text

Persian Verion

View:

960

Download:

Cites:

Information Journal Paper

Title

Protection of Operation System against Spywares and their Diversion

Author(s)

JAVAHERI D. | PARSA S. | Issue Writer Certificate

Keywords

Anti-SpywareQ2

Anti-Key LoggerQ2

Anti BlockerQ2

Diversion SpywareQ2

Dynamic Malware AnalysisQ2

Abstract

In this article, a new method for detection and interception of Spywares specifically key loggers, blockers and screen recorders is proposed. After detecting a malicious behavior, at run time by dynamic behavioral analysis, its corresponding process and executable file are located. All the interaction of the underlying network are logged and analyzed to extract the destination and source of the stolen information which was support to be transferred by the spyware. After the malicious code is analyzed, the process in the main memory is terminated and its executable and image files are removed from the hard disk, in addition it can deliver junk information to spyware or caused diversion of its destination. The proposed method tracks and intercepts malicious code through the kernel drivers belonging to the operation system. In this way, all the system functions in user mode and all the limitations and constraint imposed by the operating system can be bypassed and ignored. In this article, the security of the proposed method is also considered and a new method for interception of blockers and construction of secure virtual keyboards is presented. In this way, the main target of the proposed method to secure the operation system environment of any spywares can be achieved. Finally, the accuracy of detection and success reaction against spywares are evaluated. The accuracy was 96% and reaction rate was 100%. Comparing these results with top famous Anti-Spyware application proved that the proposed methods is competitive and is better in some features.

Cites

No record.

References

No record.

Cite

APA: Copy

JAVAHERI, D., & PARSA, S.. (2014). Protection of Operation System against Spywares and their Diversion. (JOURNAL OF ADVANCED DEFENCE SCIENCE AND TECHNOLOGY) JOURNAL OF PASSIVE DEFENCE SCIENCE AND TECHNOLOGY, 5(2 ), 147-157. SID. https://sid.ir/paper/167485/en

Vancouver: Copy

JAVAHERI D., PARSA S.. Protection of Operation System against Spywares and their Diversion. (JOURNAL OF ADVANCED DEFENCE SCIENCE AND TECHNOLOGY) JOURNAL OF PASSIVE DEFENCE SCIENCE AND TECHNOLOGY[Internet]. 2014;5(2 ):147-157. Available from: https://sid.ir/paper/167485/en

IEEE: Copy

D. JAVAHERI, and S. PARSA, “Protection of Operation System against Spywares and their Diversion,” (JOURNAL OF ADVANCED DEFENCE SCIENCE AND TECHNOLOGY) JOURNAL OF PASSIVE DEFENCE SCIENCE AND TECHNOLOGY, vol. 5, no. 2 , pp. 147–157, 2014, [Online]. Available: https://sid.ir/paper/167485/en

Related Journal Papers