Affiliation:
1. Don State Technical University; Southern University (Institute of Management, Business and Law)
2. Don State Technical University
Abstract
Objective. The purpose of this study is to develop and analyze methods for neutralizing «zero-day» threats in order to increase the level of cybersecurity and protection of information systems. Method. In this article, a behavioral analysis of the threat is used. The characteristic features of the zero-day exploit behavior have been studied. The threat model is based on solving the tasks of timely detection and neutralization of the threat. Result. The actual problem of information systems security - the threat of «zero-day» is considered. The review of existing neutralization methods and discussion of effective new approaches were carried out. It has been revealed that the main vulnerability is outdated threat signatures. Threat detection is based on a study of the behavior of software a comparison with the previous day tracking is possible mainly by analyzing log files taken from an automated workplace. Conclusion. The content of this work emphasizes the importance of developing methods to neutralize «zero-day» threats in order to avoid the centralized spread of vulnerability and infection of a large number of automated workplaces, which can lead to the suspension of production processes within a large enterprise.
Publisher
FSB Educational Establishment of Higher Education Daghestan State Technical University
Subject
Polymers and Plastics,General Environmental Science
Reference21 articles.
1. Journal of Information Security and Applications. June 2019; 46:164-172
2. Huang, L., Joseph, A., Nelson, H., & Rubinstein, B. Adversarial machine learning. Proceedings of the 4th ACM workshop on Security and artificial intelligence. ACM, 2011; 43-58.
3. Rieck, K., Trinius, P., Willems, C., Holz, T., & Bos, H. Automatic analysis of malware behavior using machine learning. Journal of Computer Security, 19(4), 639-668.
4. DDoS attacks. Causes of occurrence, classification and protection from DDoS attacks [Electronic resource]. URL: http://efsol.ru/articles/ddos-attacks.html (accessed 07.19.2023).
5. Flenov M. Linux through the eyes of a hacker. - St. Petersburg:BHV-Petersburg, 2010; 480. (In Russ).