Time Sensitivity in Cyberweapon Reusability: Stealth as a Critical Attribute Allowing Weaponized Software Code to be Reused, Survivability That Delays Detection to Prevent Vulnerability Patching

Nonfiction, Computers, Networking & Communications, Computer Security, Operating Systems, Application Software
Cover of the book Time Sensitivity in Cyberweapon Reusability: Stealth as a Critical Attribute Allowing Weaponized Software Code to be Reused, Survivability That Delays Detection to Prevent Vulnerability Patching by Progressive Management, Progressive Management
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart
Author: Progressive Management ISBN: 9780463562703
Publisher: Progressive Management Publication: June 24, 2018
Imprint: Smashwords Edition Language: English
Author: Progressive Management
ISBN: 9780463562703
Publisher: Progressive Management
Publication: June 24, 2018
Imprint: Smashwords Edition
Language: English

This important December 2017 report has been professionally converted for accurate flowing-text e-book format reproduction.

A cyberweapon is weaponized software code that exploits flaws in software. It is only effective if the flaw still exists at the time of weapon deployment. Because of this, there is only a small window of time in which a particular cyberweapon can be used. Many argue that cyberweapons can only be effectively used once, and that after first use, the vulnerability will be patched. However, the target must first detect the attack, find the vulnerability that was exploited, reverse-engineer the cyberweapon to identify signatures, then create and implement a patch. This window of opportunity between attack detection and patch implementation allows an attacker to reuse the cyberweapon against different or even the same targets as long as the window of opportunity remains open. An attacker can increase the length of time the window remains open by obfuscating the cyberweapon's signatures to make it harder to detect the attack or by making it harder to locate and remove the weapon. This can be accomplished by incorporating survivability into the weapon' s design requirement. This thesis explores the strategic implications of reusable cyberweapons by specifically looking at stealth as the critical attribute that allows a cyberweapon to go undetected and survive long enough to be effectively used more than once.

I. INTRODUCTION * A. OVERVIEW * B. SIGNIFICANCE OF A REUSABLE CYBERWEAPON * II. RELATED RESEARCH * A. OVERVIEW * B. DEFINING CYBERWEAPONS * 1. Classifying Types of Cyberweapons * C. VULNERABILITY LIFE CYCLE * 1. Discovering Vulnerabilities * 2. Reporting Vulnerabilities * 3. Patching Vulnerabilities * D. THE DEBATE ON PUBLIC DISCLOSURE * E. PERISHABILITY OF CYBERWEAPONS * 1. Risk of Rediscovery * F. TIMING THE USE OF CYBERWEAPONS * III. REUSABILITY * A. OVERVIEW * B. MALWARE SIGNATURES * C. NEGLIGENCE * 1. Unpatched Systems * 2. Outdated Antivirus Software * 3. Publicly Known Vulnerabilities * 4. The Human Element * D. PERSISTENCE * 1. Memory-Resident Malware * 2. Fileless Malware * 3. Supply Chain Manipulation * E. VARIATIONS * 1. Encryption and Packing * 2. Polymorphic and Metamorphic Malware * IV. STRATEGIC IMPLICATIONS OF A REUSABLE CYBERWEAPON * A. OVERVIEW * B. SURVIVABILITY * 1. Applying Survivability to Cyberweapons * 2. Deception and Concealment of Cyberweapons * C. DESIGNING A SURVIVABLE CYBERWEAPON * 1. Determining Probability of Mission Success * 2. Determining Measure of Effectiveness over Time * V. CONCLUSION * A. OVERVIEW * B. POLICY RECOMMENDATIONS * 1. The Benefits of a Reusable Cyberweapon * 2. The Debate on Cyberweapon Stockpiling * 3. Title 10 and Title 50 Policy Discussion * C. FUTURE RESEARCH

View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart

This important December 2017 report has been professionally converted for accurate flowing-text e-book format reproduction.

A cyberweapon is weaponized software code that exploits flaws in software. It is only effective if the flaw still exists at the time of weapon deployment. Because of this, there is only a small window of time in which a particular cyberweapon can be used. Many argue that cyberweapons can only be effectively used once, and that after first use, the vulnerability will be patched. However, the target must first detect the attack, find the vulnerability that was exploited, reverse-engineer the cyberweapon to identify signatures, then create and implement a patch. This window of opportunity between attack detection and patch implementation allows an attacker to reuse the cyberweapon against different or even the same targets as long as the window of opportunity remains open. An attacker can increase the length of time the window remains open by obfuscating the cyberweapon's signatures to make it harder to detect the attack or by making it harder to locate and remove the weapon. This can be accomplished by incorporating survivability into the weapon' s design requirement. This thesis explores the strategic implications of reusable cyberweapons by specifically looking at stealth as the critical attribute that allows a cyberweapon to go undetected and survive long enough to be effectively used more than once.

I. INTRODUCTION * A. OVERVIEW * B. SIGNIFICANCE OF A REUSABLE CYBERWEAPON * II. RELATED RESEARCH * A. OVERVIEW * B. DEFINING CYBERWEAPONS * 1. Classifying Types of Cyberweapons * C. VULNERABILITY LIFE CYCLE * 1. Discovering Vulnerabilities * 2. Reporting Vulnerabilities * 3. Patching Vulnerabilities * D. THE DEBATE ON PUBLIC DISCLOSURE * E. PERISHABILITY OF CYBERWEAPONS * 1. Risk of Rediscovery * F. TIMING THE USE OF CYBERWEAPONS * III. REUSABILITY * A. OVERVIEW * B. MALWARE SIGNATURES * C. NEGLIGENCE * 1. Unpatched Systems * 2. Outdated Antivirus Software * 3. Publicly Known Vulnerabilities * 4. The Human Element * D. PERSISTENCE * 1. Memory-Resident Malware * 2. Fileless Malware * 3. Supply Chain Manipulation * E. VARIATIONS * 1. Encryption and Packing * 2. Polymorphic and Metamorphic Malware * IV. STRATEGIC IMPLICATIONS OF A REUSABLE CYBERWEAPON * A. OVERVIEW * B. SURVIVABILITY * 1. Applying Survivability to Cyberweapons * 2. Deception and Concealment of Cyberweapons * C. DESIGNING A SURVIVABLE CYBERWEAPON * 1. Determining Probability of Mission Success * 2. Determining Measure of Effectiveness over Time * V. CONCLUSION * A. OVERVIEW * B. POLICY RECOMMENDATIONS * 1. The Benefits of a Reusable Cyberweapon * 2. The Debate on Cyberweapon Stockpiling * 3. Title 10 and Title 50 Policy Discussion * C. FUTURE RESEARCH

More books from Progressive Management

Cover of the book Oral Histories of Ballistic Missile Development Pioneers from the NASA Oral History Project: Featuring Simon Ramo, Co-founder of TRW, and General Bernard A. Schriever, USAF Missile Architect by Progressive Management
Cover of the book Bio-Inspired Innovation and National Security: Biological Warfare, Biomolecular Engineering, DARPA, Abiotic Sensing, Biosensing and Bioelectronics, Bioenergy, Neurobiotics, Human Applications by Progressive Management
Cover of the book 21st Century FEMA Study Course: National Incident Management System (Incident Command System) Emergency Responder Field Operations Guide by Progressive Management
Cover of the book Operation Ajax: A Case Study on Analyst-Policy Maker Tensions and the Challenges of Estimative Intelligence – CIA Covert Operation Coup Overthrowing Iran’s Elected Prime Minister Mossadeq by Progressive Management
Cover of the book U.S. Navy Abbreviations of World War II and U.S. Navy Code Words of World War II: Terms Found in Pearl Harbor Documents by Progressive Management
Cover of the book Complete Guide to the Internment of Japanese Americans During World War II: Personal Justice Denied Commission, Report of General DeWitt on Japanese Evacuation From the West Coast, Studies and Reviews by Progressive Management
Cover of the book With the 1st Marine Division in Iraq, 2003: No Greater Friend, No Worse Enemy - Marines of the Blue Diamond, Camp Pendleton, Iraq War to Oust Saddam Hussein by Progressive Management
Cover of the book Effective Operational Deception: Learning the Lessons of Midway and Desert Storm - World War II and the Persian Gulf War, Japanese Deception Plan Failed to Incorporate Economy of Force Principle by Progressive Management
Cover of the book The "People" in the PLA: Recruitment, Training, and Education in China's Military - Chinese Military Career Profiles, Conscripts, Officer Corps, Command Colleges by Progressive Management
Cover of the book Global Reach Laydown from Desert Shield to Enduring Freedom: A Comparative Analysis - Serbia, War on Terror, Afghanistan, TALCE, Operation Allied Force by Progressive Management
Cover of the book Leadership and Parochialism: An Enduring Reality? Defense Reorganization, Bias in Praxis, Just Cause and Persian Gulf War, Colin Powell, Schwarzkopf, Jointness Attitudes by Progressive Management
Cover of the book Cruise Missiles for the U. S. Navy: An Exemplar of Innovation in a Military Organization - Sperry's Aerial Torpedo, Project Aphrodite, Gorgon Missile, Drones, Regulus, Harpoon, Tomahawk by Progressive Management
Cover of the book 21st Century U.S. Military Manuals: U.S. Marine Corps (USMC) Leading Marines - Marine Corps Warfighting Publication (MCWP) 6-11 by Progressive Management
Cover of the book Eisenhower: Watershed at Leavenworth, the Command and General Staff School; Centennial Review and Bibliography, Ike's Drive, Individualism, and Sense of Purpose from World War II to the Presidency by Progressive Management
Cover of the book NSA Secrets Declassified: The History of Traffic Analysis: World War I - Vietnam, Signals Intelligence (SIGINT), Communications Intelligence (COMMINT), World War II, Cold War, Cryptanalysis by Progressive Management
We use our own "cookies" and third party cookies to improve services and to see statistical information. By using this website, you agree to our Privacy Policy