Contributo in volume, 2019, ENG

Advanced Information Hiding Techniques for Modern Botnets

Luca Caviglione, Wojciech Mazurczyk, Steffen Wendzel

Istituto di Matematica Applicata e Tecnologie Informatiche (IMATI), Warsaw University of Technology, Hochschule - Worms.

The chapter discusses the most recent and sophisticated form of steganography and information hiding that can be used to empower botnets. Specifically, it investigates techniques proposed by the academic literature and observed in the wild in real malware. Since steganography and information hiding can be also used to avoid the detection of the software implementing the botnet, to implement some anti-forensics techniques, or to exploit local communications to bypass the sandboxes deployed within a host, the chapter will also review and classify the most promising mechanisms that could be used to engineer sophisticated, future botnets. With such a background, the chapter will also introduce possible detection techniques as well as network architectures properly suited to counteract risks arising from botnets.

Keywords

information hiding, steganography, cybersecurity, botnet, covert channel

CNR authors

Caviglione Luca

CNR institutes

IMATI – Istituto di matematica applicata e tecnologie informatiche "Enrico Magenes"

ID: 400735

Year: 2019

Type: Contributo in volume

Creation: 2019-03-15 13:17:04.000

Last update: 2019-10-22 10:00:40.000

CNR authors

External links

OAI-PMH: Dublin Core

OAI-PMH: Mods

OAI-PMH: RDF

External IDs

CNR OAI-PMH: oai:it.cnr:prodotti:400735