Abstract
In this paper, a key-backup technique for the recovery of files that have been encrypted by ransomware is proposed. Ransomware interferes with the victim’s system through the enactment of abnormal behavior, which is the locking of the victim’s system or the encryption of the system or files. Ransomware writers require money from victims as a condition for the recovery of the encrypted files and systems that have been seized; accordingly, systems that are infected by ransomware cannot be repaired without a decryption key, making the employment of detection and recovery methods urgent. In this paper, a prevention technique for the backing up of encryption keys in a secure repository, and that can enable the recovery of ransomware-infected systems and ransomware-encrypted files. The proposed technique can be used to repair systems that have been infected by ransomware, thereby ensuring safety regarding such malicious codes.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Manky, D.: Cybercrime as a Service: a very modern business. J. Comput. Fraud Secur. 2013(6), 9–13 (2013)
Everett, C.: Ransomware: to pay or not to pay? J. Comput. Fraud Secur. 2016(4), 8–12 (2016)
Xin, L., Qinyu, L.: Ransomware: a new cyber hijacking threat to enterprises. In: Handbook of Research on Information Security and Assurance, IGI (2009)
Giri, B.N., Jyoti, N.: McAfee AVERT, The Emergence of Ransomware, AVAR (2006)
Gazet, A.: Comparative analysis of various ransomware virii. J. Comput. Virol. 6(1), 77–90 (2008)
Liao, Q.: Ransomware: a growing threat to SMEs. In: Conference Southwest Decision Science Institutes (2008)
Song, S., Kim, B., Lee, S.: The effective ransomware prevention technique using process monitoring on android platform. J. Mobile Inform. Syst. 2016, 9 (2016)
Violet, B.: CryotoLocker’s crimeware: a trail of millions in laundered Bitcoin, ZDNet, December 2013
Ahmadian, M.M., Shahriari, H.R., Ghaffarian, S.M.: Connection-monitor & connection-breaker: a novel approach for prevention and detection of high survivable ransomwares. In: Conference Information Security and Cryptology, pp. 79–84, September 2015
McAfee, McAfee Labs Threats report. http://www.mcafee.com/us/resources/reports/rp-quarterly-threats-mar-2016.pdf
Kim, D., Kim, S.: Design of quantification model for ransom ware prevent. World J. Eng. Technol. 3, 203–207 (2015)
Kim, S., Park, J., Lee, K., You, I., Yim, K.: A brief survey on rootkit techniques in malicious codes. J. Internet Serv. Inform. Secur. 2(3/4), 134–147 (2012)
Lee, K., Lee, Y., Park, J., You, I., Yim, K.: Security issues on the CNG cryptography library (Cryptography API: Next Generation). In: Conference Innovative Mobile and Internet Services in Ubiquitous Computing, pp. 709–713, July 2013
Lee, K., You, I., Yim, K.: Vulnerability analysis on the CNG crypto library. In: Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, pp. 221–224, July 2015
Acknowledgment
This research was supported by the Basic Science Research Program through the National Research Foundation of Korea (NRF) that is funded by the Ministry of Education (NRF-2015R1D1A1A01057300) and the MSIP (Ministry of Science, ICT and Future Planning), Korea, under the ITRC (Information Technology Research Center) support program (IITP-2016-R0992-16-1006) supervised by the IITP (Institute for Information & communications Technology Promotion).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2017 ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering
About this paper
Cite this paper
Lee, K., Oh, I., Yim, K. (2017). Ransomware-Prevention Technique Using Key Backup. In: Jung, J., Kim, P. (eds) Big Data Technologies and Applications. BDTA 2016. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 194. Springer, Cham. https://doi.org/10.1007/978-3-319-58967-1_12
Download citation
DOI: https://doi.org/10.1007/978-3-319-58967-1_12
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-58966-4
Online ISBN: 978-3-319-58967-1
eBook Packages: Computer ScienceComputer Science (R0)