TAMIS - 2017 - Annual activity report

TAMIS

TAMIS - 2017

Team Tamis

Personnel

Overall Objectives

Context
Approach and motivation

Research Program

Axis 1: Vulnerability analysis
Axis 2: Malware analysis
Axis 3: Building a secure network stack

Application Domains

System analysis
Cybersecurity
Safe Internet

Highlights of the Year

New Software and Platforms

GNUnet
MHD
PLASMA Lab
Taler
HyLeak
SimFI
DaD
MASSE
Behavioral Malware Analysis
VITRAIL - Visualisation Tool
VITRAIL 6 JBInsTrace
Platforms

New Results

Results for Axis 1: Vulnerability analysis
Results for Axis 2: Malware analysis
Results for Axis 3: Building a secure network stack
Other research results

Bilateral Contracts and Grants with Industry

Bilateral Contracts with Industry
Bilateral Grants with Industry

Partnerships and Cooperations

Regional Initiatives
National Initiatives
European Initiatives

Dissemination

Promoting Scientific Activities
Teaching - Supervision - Juries
Popularization

Bibliography

Publications of the year
References in notes

Previous |

Home | Next next

Section: New Software and Platforms

DaD

Data-aware Defense

Keyword: Ransomware

Functional Description: DaD is a ransomware countermeasure based on a file system minifilter driver. It is a proof of concept and in its present condition cannot be used as a replacement of the existing antivirus solutions. DaD detects randomness of the data by monitoring the write operations on the file system. We monitor all the userland threads, and also the whole file system (i.e., not restricted to Documents). It blocks the threads that exceed a specific threshold. The malicious thread is not killed, we only block its next I/O operations.

Contact: Aurélien Palisse

Previous |

Home | Next next