Security and Privacy in Communication Networks. 17th EAI International Conference, SecureComm 2021, Virtual Event, September 6–9, 2021, Proceedings, Part I

Research Article

: Accurate Semantic Identification from Low-Level System Data

Download
245 downloads
  • @INPROCEEDINGS{10.1007/978-3-030-90019-9_26,
        author={Mohammad Kavousi and Runqing Yang and Shiqing Ma and Yan Chen},
        title={: Accurate Semantic Identification from Low-Level System Data},
        proceedings={Security and Privacy in Communication Networks. 17th EAI International Conference, SecureComm 2021, Virtual Event, September 6--9, 2021, Proceedings, Part I},
        proceedings_a={SECURECOMM},
        year={2021},
        month={11},
        keywords={Security System security Semantic detection Provenance graph Living-off-the-land},
        doi={10.1007/978-3-030-90019-9_26}
    }
    
  • Mohammad Kavousi
    Runqing Yang
    Shiqing Ma
    Yan Chen
    Year: 2021
    : Accurate Semantic Identification from Low-Level System Data
    SECURECOMM
    Springer
    DOI: 10.1007/978-3-030-90019-9_26
Mohammad Kavousi1, Runqing Yang2, Shiqing Ma3, Yan Chen1
  • 1: Northwestern University
  • 2: Zhejiang University
  • 3: Rutgers University

Abstract

Forensic analysis, nowadays, is a crucial part of attack investigation in end-user and enterprise systems. Log collection and analysis enable investigators to rebuild the attack chain, find the attack source and possibly rollback the damage made to the system.