Tag Archives: Tools for security

22/01/2016 – Talk by Stefano Zanero

Title:  Making sense of a million samples per day: Behavior-based Methods for Automated, Scalable Malware Analysis
Time: 12:00
Location: Meeting room, building Zeta
Type: Research Result
Speaker: Stefano Zanero
With the astonishing rate of new and modified malware samples being released daily, automation of analysis is needed to classify and cluster together similar samples, exclude basic and uninteresting variations, and focus costly manual analysis work on novel and interesting features (e.g., added or remove pieces of code with a given semantic). We will discuss the challenges in analyzing large malware datasets in a (semi)automatic fashion, and some recent research results that may help with the task, by leveraging the concept of “behavior” applied to malicious code.
Short bio: Stefano Zanero is an associate professor at DEIB, the computer engineering department of the Politecnico di Milano University. His research interests focus on systems security, in particular automated malware analysis, cyber-phisical systems security, critical infrastructure security, as well as computer forensics.

03/12/2015 – Talk by Marco Squarcina

Title:  Run-time analysis of PKCS#11 attacks
Time: 13:30
Location: Acadia Lab, building Zeta
Type: Research Results
Speaker: Marco Squarcina
The goal of this talk is to report on the development of a tool aimed at the automatic detection of attacks against PKCS#11 devices. Instead of modifying or configuring the API, we propose a stateful run-time monitor which is able to track key usage over time, for the identification of operations that might result in the leakage of sensitive keys. We briefly report on the components developed for implementing the monitor and discuss new challenges and open issues.