Subir material

Suba sus trabajos a SEDICI, para mejorar notoriamente su visibilidad e impacto

 

Mostrar el registro sencillo del ítem

dc.date.accessioned 2017-12-05T17:10:21Z
dc.date.available 2017-12-05T17:10:21Z
dc.date.issued 2017-10
dc.identifier.uri http://sedici.unlp.edu.ar/handle/10915/63935
dc.description.abstract During the last couple of years there has been an important surge on the use of HTTPs by malware. The reason for this increase is not completely understood yet, but it is hypothesized that it was forced by organizations only allowing web traffic to the Internet. Using HTTPs makes malware behavior similar to normal connections. Therefore, there has been a growing interest in understanding the usage of HTTPs by malware. This paper describes our research to obtain large quantities of real malware traffic using HTTPs, our use of man-in-the-middle HTTPs interceptor proxies to open and study the content, and our analysis of how the behavior of the malware changes after being intercepted. The research goal is to understand how malware uses HTTPs and the impact of intercepting its traffic. We conclude that the use of a interceptor proxy forces the malware to change its behavior and therefore should be carefully considered before being implemented. en
dc.format.extent 1279-1288 es
dc.language en es
dc.subject malware en
dc.subject botnets en
dc.subject network security en
dc.subject MITM en
dc.subject proxy en
dc.title Observer effect: How Intercepting HTTPS traffic forces malware to change their behavior en
dc.type Objeto de conferencia es
sedici.identifier.isbn 978-950-34-1539-9 es
sedici.creator.person Erquiaga, María José es
sedici.creator.person García, Sebastián es
sedici.creator.person García Garino, Carlos es
sedici.description.note VI Workshop de Seguridad Informática (WSI). es
sedici.subject.materias Ciencias Informáticas es
sedici.description.fulltext true es
mods.originInfo.place Red de Universidades con Carreras en Informática (RedUNCI) es
sedici.subtype Objeto de conferencia es
sedici.rights.license Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0)
sedici.rights.uri http://creativecommons.org/licenses/by-nc-sa/4.0/
sedici.date.exposure 2017-10
sedici.relation.event XXIII Congreso Argentino de Ciencias de la Computación (La Plata, 2017). es
sedici.description.peerReview peer-review es


Descargar archivos

Thumbnail
Documento completo
Descargar archivo (3.592Mb) - PDF

Este ítem aparece en la(s) siguiente(s) colección(ones)

Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) Excepto donde se diga explícitamente, este item se publica bajo la siguiente licencia Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0)