Cookies
O website necessita de alguns cookies e outros recursos semelhantes para funcionar. Caso o permita, o INESC TEC irá utilizar cookies para recolher dados sobre as suas visitas, contribuindo, assim, para estatísticas agregadas que permitem melhorar o nosso serviço. Ver mais
Aceitar Rejeitar
  • Menu
    Publicações

    Publicações por João Marco

    2021

    Balancing the Detection of Malicious Traffic in SDN Context

    Autores
    Machado, BS; Silva, JMC; Lima, SR; Carvalho, P;

    Publicação
    Twelfth International Conference on Ubiquitous and Future Networks, ICUFN 2021, Jeju Island, South Korea, August 17-20, 2021

    Abstract

    2021

    Towards a bottom-up approach to inclusive digital identity systems

    Autores
    Silva, JMC; Fonte, V; Sousa, A;

    Publicação
    ICEGOV 2021: 14th International Conference on Theory and Practice of Electronic Governance, Athens, Greece, October 6 - 8, 2021

    Abstract

    2024

    A worldwide overview on the information security posture of online public services

    Autores
    Silva, JM; Ribeiro, D; Ramos, LFM; Fonte, V;

    Publicação
    57th Hawaii International Conference on System Sciences, HICSS 2024, Hilton Hawaiian Village Waikiki Beach Resort, Hawaii, USA, January 3-6, 2024

    Abstract

    Ler Publicação Completa

    2023

    CRIBA: A Tool for Comprehensive Analysis of Cryptographic Ransomware's I/O Behavior

    Autores
    Esteves, T; Pereira, B; Oliveira, RP; Marco, J; Paulo, J;

    Publicação
    2023 42ND INTERNATIONAL SYMPOSIUM ON RELIABLE DISTRIBUTED SYSTEMS, SRDS 2023

    Abstract
    Cryptographic ransomware attacks are constantly evolving by obfuscating their distinctive features (e.g., I/O patterns) to bypass detection mechanisms and to run unnoticed at infected servers. Thus, efficiently exploring the I/O behavior of ransomware families is crucial so that security analysts and engineers can better understand these and, with such knowledge, enhance existing detection methods. In this paper, we propose CRIBA, an open-source framework that simplifies the exploration, analysis, and comparison of I/O patterns for Linux cryptographic ransomware. Our solution combines the collection of comprehensive information about system calls issued by ransomware samples, with a customizable and automated analysis and visualization pipeline, including tailored correlation algorithms and visualizations. Our study, including 5 Linux ransomware families, shows that CRIBA provides comprehensive insights about the I/O patterns of these attacks while aiding in exploring common and differentiating traits across families.

    FecharLer Abstract

    2023

    An Expert System as an Awareness Tool to Prevent Social Engineering Attacks in Public Organizations

    Autores
    Cardoso, WR; Silva, JM; Ribeiro, AdRL;

    Publicação
    SSRN Electronic Journal

    Abstract

    • 10
    • 10