FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2806401308> ?p ?o ?g. }

• W2806401308 abstract "With modern cyber threats, attackers should gain persistency in target systems to achieve attack objectives. Once an attacker’s zero-day vulnerabilities on target systems are patched, the attacker may lose control over the system. However, systems remain vulnerable when an attacker manipulates the component resources on a Windows system. We found methods to generate invisible vulnerabilities on a victim’s system. Our findings are as follows: first, we found ways to replace a component to an old vulnerable version while maintaining the current update records; second, we found that the Windows system does not recognize the replaced components. We define the first issue as a package-component mismatch and the second issue as a blind spot issue on the Windows update management. They have been identified on all version of Vista and later, including desktop platforms and server platforms. Based on our findings, we reveal an Update State Tampering technique that can generate invisible security holes on target systems. We also offer corresponding countermeasures to detect and correct package-component mismatches. In this paper, we introduce the problems with the current Windows update management mechanism, the Update State Tampering technique from the attacker’s point of view, and an Update State Check scheme that detects and recovers the package-component mismatches. We stress that our proposed Update State Check scheme should be deployed immediately in order to mitigate large-scale exploitation of the proposed technique." @default.
• W2806401308 created "2018-06-13" @default.
• W2806401308 creator A5037985631 @default.
• W2806401308 creator A5047101942 @default.
• W2806401308 creator A5073284312 @default.
• W2806401308 creator A5088131160 @default.
• W2806401308 date "2018-01-01" @default.
• W2806401308 modified "2023-09-28" @default.
• W2806401308 title "Update State Tampering: A Novel Adversary Post-compromise Technique on Cyber Threats" @default.
• W2806401308 cites W1109422923 @default.
• W2806401308 cites W2004584049 @default.
• W2806401308 doi "https://doi.org/10.1007/978-3-319-93411-2_7" @default.
• W2806401308 hasPublicationYear "2018" @default.
• W2806401308 type Work @default.
• W2806401308 sameAs 2806401308 @default.
• W2806401308 citedByCount "0" @default.
• W2806401308 crossrefType "book-chapter" @default.
• W2806401308 hasAuthorship W2806401308A5037985631 @default.
• W2806401308 hasAuthorship W2806401308A5047101942 @default.
• W2806401308 hasAuthorship W2806401308A5073284312 @default.
• W2806401308 hasAuthorship W2806401308A5088131160 @default.
• W2806401308 hasConcept C11413529 @default.
• W2806401308 hasConcept C121332964 @default.
• W2806401308 hasConcept C134306372 @default.
• W2806401308 hasConcept C168167062 @default.
• W2806401308 hasConcept C33923547 @default.
• W2806401308 hasConcept C38652104 @default.
• W2806401308 hasConcept C41008148 @default.
• W2806401308 hasConcept C41065033 @default.
• W2806401308 hasConcept C48103436 @default.
• W2806401308 hasConcept C77618280 @default.
• W2806401308 hasConcept C97355855 @default.
• W2806401308 hasConceptScore W2806401308C11413529 @default.
• W2806401308 hasConceptScore W2806401308C121332964 @default.
• W2806401308 hasConceptScore W2806401308C134306372 @default.
• W2806401308 hasConceptScore W2806401308C168167062 @default.
• W2806401308 hasConceptScore W2806401308C33923547 @default.
• W2806401308 hasConceptScore W2806401308C38652104 @default.
• W2806401308 hasConceptScore W2806401308C41008148 @default.
• W2806401308 hasConceptScore W2806401308C41065033 @default.
• W2806401308 hasConceptScore W2806401308C48103436 @default.
• W2806401308 hasConceptScore W2806401308C77618280 @default.
• W2806401308 hasConceptScore W2806401308C97355855 @default.
• W2806401308 hasLocation W28064013081 @default.
• W2806401308 hasOpenAccess W2806401308 @default.
• W2806401308 hasPrimaryLocation W28064013081 @default.
• W2806401308 hasRelatedWork W1424193454 @default.
• W2806401308 hasRelatedWork W1545927878 @default.
• W2806401308 hasRelatedWork W1567270082 @default.
• W2806401308 hasRelatedWork W18246293 @default.
• W2806401308 hasRelatedWork W2045669182 @default.
• W2806401308 hasRelatedWork W2054660290 @default.
• W2806401308 hasRelatedWork W2085434887 @default.
• W2806401308 hasRelatedWork W2505164333 @default.
• W2806401308 hasRelatedWork W2527789129 @default.
• W2806401308 hasRelatedWork W2567184755 @default.
• W2806401308 hasRelatedWork W2785800839 @default.
• W2806401308 hasRelatedWork W2789977828 @default.
• W2806401308 hasRelatedWork W2909630611 @default.
• W2806401308 hasRelatedWork W2971305436 @default.
• W2806401308 hasRelatedWork W2982581462 @default.
• W2806401308 hasRelatedWork W3021304233 @default.
• W2806401308 hasRelatedWork W3023005484 @default.
• W2806401308 hasRelatedWork W3177687456 @default.
• W2806401308 hasRelatedWork W47524963 @default.
• W2806401308 hasRelatedWork W2549373199 @default.
• W2806401308 isParatext "false" @default.
• W2806401308 isRetracted "false" @default.
• W2806401308 magId "2806401308" @default.
• W2806401308 workType "book-chapter" @default.