Bibliographic Details
| Title: |
Cryptoviral extortion using Microsoft's Crypto API. |
| Authors: |
Young, Adam adamy@acm.org |
| Source: |
International Journal of Information Security. 2006, Vol. 5 Issue 2, p67-76. 10p. 1 Diagram, 1 Chart. |
| Subjects: |
Computer security, Microsoft Windows device drivers (Computer programs), Data protection, Data encryption, Computer viruses, Computer network security |
| Abstract: |
This paper presents the experimental results that were obtained by implementing the payload of a cryptovirus on the Microsoft Windows platform. The attack is based entirely on the Microsoft Cryptographic API and the needed API calls are covered in detail. More specifically, it is shown that by using eight types of API calls and 72 lines of C code, the payload can hybrid encrypt sensitive data and hold it hostage. Benchmarks are also given. A novel countermeasure against cryptoviral extortion attacks is shown that forces the API caller to demonstrate that an authorized party can recover the asymmetrically encrypted data. [ABSTRACT FROM AUTHOR] |
|
Copyright of International Journal of Information Security is the property of Springer Nature and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.) |
| Database: |
Engineering Source |