[NRG] Reminder: Colloquium Oct 5: Evangelos Markatos, Polymorphic Attack ... @ Tue Oct 5 11am - 12pm (NRG at BU)

Google Calendar calendar-notification at google.com
Mon Oct 4 11:01:31 EDT 2010

This is a reminder for:

Title: Colloquium Oct 5: Evangelos Markatos, Polymorphic Attack Detection
Computer Science Colloquium

Tuesday, Oct 5, 11 am
MCS 135

Speaker: Evangelos Markatos, FORTH-ICS and Univ. of Crete

Title: Real-world Polymorphic Attack Detection

As state-of-the-art attack detection technology becomes more prevalent,
  attackers have started to employ evasion techniques such as code
  obfuscation and polymorphism to defeat existing defenses. We have recently
  proposed network-level emulation, a heuristic detection method that scans
  network traffic to detect polymorphic attacks. Our approach uses a CPU
  emulator to dynamically analyze every potential instruction sequence in
  the inspected traffic, aiming to identify the execution behavior of
  certain malicious code classes, such as self-decrypting polymorphic
  shellcode. In this work, we present results and experiences from
  deployments of network-level emulation in production networks. After more
  than a year of continuous operation, our prototype implementation has
  captured more than a million attacks against real systems, while so far
  has not resulted to any false positives. The observed attacks employ a
  highly diverse set of exploits, often against less widely used vulnerable
  services, and in some cases, sophisticated obfuscation schemes.

  Prof. Evangelos Markatos received his diploma in Computer Engineering from
  the University of Patras in 1988, and the M.S and Ph.D. degrees in
  Computer Science from the University of Rochester, NY in 1990 and 1993
  respectively. Since 1992, he collaborates with the Institute of Computer
  Science of the Foundation for Research and Technology - Hellas (ICS-FORTH)
  where he is currently the founder and head of the Distributed Computing
  Systems Laboratory. He conducts research in several areas including
  distributed and parallel systems, the World-Wide Web, Internet Systems and
  Technologies, as well as Computer and Communication Systems Security.  He
  has been the project manager of the LOBSTER and NoAH projects, both funded
  in part by the European Union and focusing on developing novel approaches
  to network monitoring and network security. He is currently the project
  manager of the i-code and SysSec projects.
  Since 1992, he has also been affiliated with the Computer Science
  Department of the University of Crete, where he is currently a full

Host: Mark Crovella
When: Tue Oct 5 11am – 12pm Eastern Time
Where: MCS 135
Calendar: NRG at BU
     * Vatche Ishakian - creator

Event details:  

Invitation from Google Calendar: https://www.google.com/calendar/

You are receiving this email at the account nrg-l at cs.bu.edu because you are  
subscribed for reminders on calendar NRG at BU.

To stop receiving these notifications, please log in to  
https://www.google.com/calendar/ and change your notification settings for  
this calendar.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://cs-mailman.bu.edu/pipermail/nrg-l/attachments/20101004/9f54561a/attachment.html 

More information about the NRG-L mailing list