Time Sensitivity in Cyberweapon Reusability: Stealth as a Critical Attribute Allowing Weaponized Software Code to be Reused, Survivability That Delays Detection to Prevent Vulnerability Patching

Nonfiction, Computers, Networking & Communications, Computer Security, Operating Systems, Application Software
Cover of the book Time Sensitivity in Cyberweapon Reusability: Stealth as a Critical Attribute Allowing Weaponized Software Code to be Reused, Survivability That Delays Detection to Prevent Vulnerability Patching by Progressive Management, Progressive Management
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart
Author: Progressive Management ISBN: 9780463562703
Publisher: Progressive Management Publication: June 24, 2018
Imprint: Smashwords Edition Language: English
Author: Progressive Management
ISBN: 9780463562703
Publisher: Progressive Management
Publication: June 24, 2018
Imprint: Smashwords Edition
Language: English

This important December 2017 report has been professionally converted for accurate flowing-text e-book format reproduction.

A cyberweapon is weaponized software code that exploits flaws in software. It is only effective if the flaw still exists at the time of weapon deployment. Because of this, there is only a small window of time in which a particular cyberweapon can be used. Many argue that cyberweapons can only be effectively used once, and that after first use, the vulnerability will be patched. However, the target must first detect the attack, find the vulnerability that was exploited, reverse-engineer the cyberweapon to identify signatures, then create and implement a patch. This window of opportunity between attack detection and patch implementation allows an attacker to reuse the cyberweapon against different or even the same targets as long as the window of opportunity remains open. An attacker can increase the length of time the window remains open by obfuscating the cyberweapon's signatures to make it harder to detect the attack or by making it harder to locate and remove the weapon. This can be accomplished by incorporating survivability into the weapon' s design requirement. This thesis explores the strategic implications of reusable cyberweapons by specifically looking at stealth as the critical attribute that allows a cyberweapon to go undetected and survive long enough to be effectively used more than once.

I. INTRODUCTION * A. OVERVIEW * B. SIGNIFICANCE OF A REUSABLE CYBERWEAPON * II. RELATED RESEARCH * A. OVERVIEW * B. DEFINING CYBERWEAPONS * 1. Classifying Types of Cyberweapons * C. VULNERABILITY LIFE CYCLE * 1. Discovering Vulnerabilities * 2. Reporting Vulnerabilities * 3. Patching Vulnerabilities * D. THE DEBATE ON PUBLIC DISCLOSURE * E. PERISHABILITY OF CYBERWEAPONS * 1. Risk of Rediscovery * F. TIMING THE USE OF CYBERWEAPONS * III. REUSABILITY * A. OVERVIEW * B. MALWARE SIGNATURES * C. NEGLIGENCE * 1. Unpatched Systems * 2. Outdated Antivirus Software * 3. Publicly Known Vulnerabilities * 4. The Human Element * D. PERSISTENCE * 1. Memory-Resident Malware * 2. Fileless Malware * 3. Supply Chain Manipulation * E. VARIATIONS * 1. Encryption and Packing * 2. Polymorphic and Metamorphic Malware * IV. STRATEGIC IMPLICATIONS OF A REUSABLE CYBERWEAPON * A. OVERVIEW * B. SURVIVABILITY * 1. Applying Survivability to Cyberweapons * 2. Deception and Concealment of Cyberweapons * C. DESIGNING A SURVIVABLE CYBERWEAPON * 1. Determining Probability of Mission Success * 2. Determining Measure of Effectiveness over Time * V. CONCLUSION * A. OVERVIEW * B. POLICY RECOMMENDATIONS * 1. The Benefits of a Reusable Cyberweapon * 2. The Debate on Cyberweapon Stockpiling * 3. Title 10 and Title 50 Policy Discussion * C. FUTURE RESEARCH

View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart

This important December 2017 report has been professionally converted for accurate flowing-text e-book format reproduction.

A cyberweapon is weaponized software code that exploits flaws in software. It is only effective if the flaw still exists at the time of weapon deployment. Because of this, there is only a small window of time in which a particular cyberweapon can be used. Many argue that cyberweapons can only be effectively used once, and that after first use, the vulnerability will be patched. However, the target must first detect the attack, find the vulnerability that was exploited, reverse-engineer the cyberweapon to identify signatures, then create and implement a patch. This window of opportunity between attack detection and patch implementation allows an attacker to reuse the cyberweapon against different or even the same targets as long as the window of opportunity remains open. An attacker can increase the length of time the window remains open by obfuscating the cyberweapon's signatures to make it harder to detect the attack or by making it harder to locate and remove the weapon. This can be accomplished by incorporating survivability into the weapon' s design requirement. This thesis explores the strategic implications of reusable cyberweapons by specifically looking at stealth as the critical attribute that allows a cyberweapon to go undetected and survive long enough to be effectively used more than once.

I. INTRODUCTION * A. OVERVIEW * B. SIGNIFICANCE OF A REUSABLE CYBERWEAPON * II. RELATED RESEARCH * A. OVERVIEW * B. DEFINING CYBERWEAPONS * 1. Classifying Types of Cyberweapons * C. VULNERABILITY LIFE CYCLE * 1. Discovering Vulnerabilities * 2. Reporting Vulnerabilities * 3. Patching Vulnerabilities * D. THE DEBATE ON PUBLIC DISCLOSURE * E. PERISHABILITY OF CYBERWEAPONS * 1. Risk of Rediscovery * F. TIMING THE USE OF CYBERWEAPONS * III. REUSABILITY * A. OVERVIEW * B. MALWARE SIGNATURES * C. NEGLIGENCE * 1. Unpatched Systems * 2. Outdated Antivirus Software * 3. Publicly Known Vulnerabilities * 4. The Human Element * D. PERSISTENCE * 1. Memory-Resident Malware * 2. Fileless Malware * 3. Supply Chain Manipulation * E. VARIATIONS * 1. Encryption and Packing * 2. Polymorphic and Metamorphic Malware * IV. STRATEGIC IMPLICATIONS OF A REUSABLE CYBERWEAPON * A. OVERVIEW * B. SURVIVABILITY * 1. Applying Survivability to Cyberweapons * 2. Deception and Concealment of Cyberweapons * C. DESIGNING A SURVIVABLE CYBERWEAPON * 1. Determining Probability of Mission Success * 2. Determining Measure of Effectiveness over Time * V. CONCLUSION * A. OVERVIEW * B. POLICY RECOMMENDATIONS * 1. The Benefits of a Reusable Cyberweapon * 2. The Debate on Cyberweapon Stockpiling * 3. Title 10 and Title 50 Policy Discussion * C. FUTURE RESEARCH

More books from Progressive Management

Cover of the book Preventing Violent Extremism in the United States: White House Plan for Empowering Local Partners, al-Qaeda, Radicalization and Terrorist Recruitment by Progressive Management
Cover of the book Solyndra and the Department of Energy Loan Guarantee Program: House Hearings on Stimulus Funding for Solar Energy Company by Progressive Management
Cover of the book 66 Stories of Battle Command: Effects of Terrain, Mentally Preparing for Mission, Carousel of Deception, Obstacles, Simultaneous Attack, OPFOR Tactics, Bad Weather, Tactical Patience, JSTARS, BCT by Progressive Management
Cover of the book 21st Century Adult Cancer Sourcebook: Carcinoma of Unknown Primary (CUP), Occult Primary Malignancy - Clinical Data for Patients, Families, and Physicians by Progressive Management
Cover of the book Who Has the Puck? Strategic Initiative in Modern, Conventional War: World War II Case Studies of Russo-German War of 1941-45, Pacific War, Shifts from Superior Wisdom, Knowledge, Capacity, Technique by Progressive Management
Cover of the book 21st Century U.S. Military Manuals: North Korea Country Handbook - DPRK Political and Economic Overview, Transportation, Geography, Climate and Weather, Military Forces and Doctrine by Progressive Management
Cover of the book Army Weapons Systems 2012: Encyclopedic Reference to Everything from Satellites and Tanks to Small Arms and Ammunition, with Contractors Listed by System and Date by Progressive Management
Cover of the book 21st Century FEMA Study Course: Introduction to Hazard Mitigation (IS-393.a) - Flood, Earthquake, Tornado, Hurricane, Wildfire, Critical Facilities Protection, Community Programs by Progressive Management
Cover of the book Learning from Our Military History: The United States Army, Operation Iraqi Freedom, and the Potential for Operational Art and Thinking - Petraeus, COIN, Clausewitz, Counterinsurgency by Progressive Management
Cover of the book 21st Century Adult Cancer Sourcebook: Primary CNS Lymphoma - Clinical Data for Patients, Families, and Physicians by Progressive Management
Cover of the book Deep Water: The Gulf Oil Disaster and the Future of Offshore Drilling - The Report of the National Commission on the BP Deepwater Horizon Oil Spill and Offshore Drilling by Progressive Management
Cover of the book Oil for the Lamps of China: Beijing's 21st-Century Search for Energy: Coal, Oil, Natural Gas, Power Distribution System, Environment, Defense, Nuclear, Renewable, Solar, Wind, Geothermal by Progressive Management
Cover of the book Military Unmanned Aerial Systems (UAS) and the Department of Defense Report to Congress on Addressing Challenges for Unmanned Aircraft Systems by Progressive Management
Cover of the book 21st Century Adult Cancer Sourcebook: Hypopharyngeal Cancer - Clinical Data for Patients, Families, and Physicians by Progressive Management
Cover of the book Terrorism and the New Age of Irregular Warfare: Challenges and Opportunities - New Technologies, WMD Proliferation, American Military and National Security, Weapons, Nuclear Systems by Progressive Management
We use our own "cookies" and third party cookies to improve services and to see statistical information. By using this website, you agree to our Privacy Policy