Time Sensitivity in Cyberweapon Reusability: Stealth as a Critical Attribute Allowing Weaponized Software Code to be Reused, Survivability That Delays Detection to Prevent Vulnerability Patching

Nonfiction, Computers, Networking & Communications, Computer Security, Operating Systems, Application Software
Cover of the book Time Sensitivity in Cyberweapon Reusability: Stealth as a Critical Attribute Allowing Weaponized Software Code to be Reused, Survivability That Delays Detection to Prevent Vulnerability Patching by Progressive Management, Progressive Management
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart
Author: Progressive Management ISBN: 9780463562703
Publisher: Progressive Management Publication: June 24, 2018
Imprint: Smashwords Edition Language: English
Author: Progressive Management
ISBN: 9780463562703
Publisher: Progressive Management
Publication: June 24, 2018
Imprint: Smashwords Edition
Language: English

This important December 2017 report has been professionally converted for accurate flowing-text e-book format reproduction.

A cyberweapon is weaponized software code that exploits flaws in software. It is only effective if the flaw still exists at the time of weapon deployment. Because of this, there is only a small window of time in which a particular cyberweapon can be used. Many argue that cyberweapons can only be effectively used once, and that after first use, the vulnerability will be patched. However, the target must first detect the attack, find the vulnerability that was exploited, reverse-engineer the cyberweapon to identify signatures, then create and implement a patch. This window of opportunity between attack detection and patch implementation allows an attacker to reuse the cyberweapon against different or even the same targets as long as the window of opportunity remains open. An attacker can increase the length of time the window remains open by obfuscating the cyberweapon's signatures to make it harder to detect the attack or by making it harder to locate and remove the weapon. This can be accomplished by incorporating survivability into the weapon' s design requirement. This thesis explores the strategic implications of reusable cyberweapons by specifically looking at stealth as the critical attribute that allows a cyberweapon to go undetected and survive long enough to be effectively used more than once.

I. INTRODUCTION * A. OVERVIEW * B. SIGNIFICANCE OF A REUSABLE CYBERWEAPON * II. RELATED RESEARCH * A. OVERVIEW * B. DEFINING CYBERWEAPONS * 1. Classifying Types of Cyberweapons * C. VULNERABILITY LIFE CYCLE * 1. Discovering Vulnerabilities * 2. Reporting Vulnerabilities * 3. Patching Vulnerabilities * D. THE DEBATE ON PUBLIC DISCLOSURE * E. PERISHABILITY OF CYBERWEAPONS * 1. Risk of Rediscovery * F. TIMING THE USE OF CYBERWEAPONS * III. REUSABILITY * A. OVERVIEW * B. MALWARE SIGNATURES * C. NEGLIGENCE * 1. Unpatched Systems * 2. Outdated Antivirus Software * 3. Publicly Known Vulnerabilities * 4. The Human Element * D. PERSISTENCE * 1. Memory-Resident Malware * 2. Fileless Malware * 3. Supply Chain Manipulation * E. VARIATIONS * 1. Encryption and Packing * 2. Polymorphic and Metamorphic Malware * IV. STRATEGIC IMPLICATIONS OF A REUSABLE CYBERWEAPON * A. OVERVIEW * B. SURVIVABILITY * 1. Applying Survivability to Cyberweapons * 2. Deception and Concealment of Cyberweapons * C. DESIGNING A SURVIVABLE CYBERWEAPON * 1. Determining Probability of Mission Success * 2. Determining Measure of Effectiveness over Time * V. CONCLUSION * A. OVERVIEW * B. POLICY RECOMMENDATIONS * 1. The Benefits of a Reusable Cyberweapon * 2. The Debate on Cyberweapon Stockpiling * 3. Title 10 and Title 50 Policy Discussion * C. FUTURE RESEARCH

View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart

This important December 2017 report has been professionally converted for accurate flowing-text e-book format reproduction.

A cyberweapon is weaponized software code that exploits flaws in software. It is only effective if the flaw still exists at the time of weapon deployment. Because of this, there is only a small window of time in which a particular cyberweapon can be used. Many argue that cyberweapons can only be effectively used once, and that after first use, the vulnerability will be patched. However, the target must first detect the attack, find the vulnerability that was exploited, reverse-engineer the cyberweapon to identify signatures, then create and implement a patch. This window of opportunity between attack detection and patch implementation allows an attacker to reuse the cyberweapon against different or even the same targets as long as the window of opportunity remains open. An attacker can increase the length of time the window remains open by obfuscating the cyberweapon's signatures to make it harder to detect the attack or by making it harder to locate and remove the weapon. This can be accomplished by incorporating survivability into the weapon' s design requirement. This thesis explores the strategic implications of reusable cyberweapons by specifically looking at stealth as the critical attribute that allows a cyberweapon to go undetected and survive long enough to be effectively used more than once.

I. INTRODUCTION * A. OVERVIEW * B. SIGNIFICANCE OF A REUSABLE CYBERWEAPON * II. RELATED RESEARCH * A. OVERVIEW * B. DEFINING CYBERWEAPONS * 1. Classifying Types of Cyberweapons * C. VULNERABILITY LIFE CYCLE * 1. Discovering Vulnerabilities * 2. Reporting Vulnerabilities * 3. Patching Vulnerabilities * D. THE DEBATE ON PUBLIC DISCLOSURE * E. PERISHABILITY OF CYBERWEAPONS * 1. Risk of Rediscovery * F. TIMING THE USE OF CYBERWEAPONS * III. REUSABILITY * A. OVERVIEW * B. MALWARE SIGNATURES * C. NEGLIGENCE * 1. Unpatched Systems * 2. Outdated Antivirus Software * 3. Publicly Known Vulnerabilities * 4. The Human Element * D. PERSISTENCE * 1. Memory-Resident Malware * 2. Fileless Malware * 3. Supply Chain Manipulation * E. VARIATIONS * 1. Encryption and Packing * 2. Polymorphic and Metamorphic Malware * IV. STRATEGIC IMPLICATIONS OF A REUSABLE CYBERWEAPON * A. OVERVIEW * B. SURVIVABILITY * 1. Applying Survivability to Cyberweapons * 2. Deception and Concealment of Cyberweapons * C. DESIGNING A SURVIVABLE CYBERWEAPON * 1. Determining Probability of Mission Success * 2. Determining Measure of Effectiveness over Time * V. CONCLUSION * A. OVERVIEW * B. POLICY RECOMMENDATIONS * 1. The Benefits of a Reusable Cyberweapon * 2. The Debate on Cyberweapon Stockpiling * 3. Title 10 and Title 50 Policy Discussion * C. FUTURE RESEARCH

More books from Progressive Management

Cover of the book Apollo and America's Moon Landing Program: NASA Recommendations to Space-Faring Entities - How to Protect and Preserve the Historic and Scientific Value of U.S. Government Lunar Artifacts by Progressive Management
Cover of the book A History of Marine Fighter Attack Squadron 323: U.S. Marine Corps History, World War II, Pacific Warfare, Combat Action in the Korean War, Intensive Involvement in Vietnam War by Progressive Management
Cover of the book From The Line In The Sand: Accounts of USAF Company Grade Officers in Support of Desert Shield / Desert Storm by Progressive Management
Cover of the book Emergency Support Function 15: Communication Synchronization during Defense Support of Civil Authorities Operations - Whole-of-Government External and Public Affairs, Lessons from 9/11 and Katrina by Progressive Management
Cover of the book 21st Century FEMA Study Course: Building for the Earthquakes of Tomorrow (IS-8.a) - Earthquake Causes and Characteristics, Effects, Protecting Your Community, Hazard Reduction by Progressive Management
Cover of the book FBI Report: Today's FBI Facts & Figures 2010-2011 - Fidelity, Bravery, Integrity - Violent Crime, Public Corruption, Cyber, Counterintelligence, Counterterrorism by Progressive Management
Cover of the book 21st Century Peacekeeping and Stability Operations Institute (PKSOI) Papers - Known Unknowns: Unconventional "Strategic Shocks" in Defense Strategy Development by Progressive Management
Cover of the book Factors in Italian Military Modernization: NATO, European Union, Gendarmerie Force, History of Post-World War II Italy, Social and Political Factors, End of Conscription, Army Reorganization by Progressive Management
Cover of the book 20th Century Guide to the Tuskegee Airmen, Air Force Integration, Blacks in the Army Air Forces in World War II, Racial Segregation and Discrimination, African-American Race Relations in the Air Force by Progressive Management
Cover of the book Changes in the Arctic: Climate Change and Loss of Arctic Sea Ice, Claims and Sovereignty, Sea Transport, Oil, Gas, Mineral Exploration, Polar Icebreaking, Protected Species and Indigenous People by Progressive Management
Cover of the book 21st Century Textbooks of Military Medicine - Military Preventive Medicine: Mobilization and Deployment, Volume 1 - Diseases and Conditions from Jet Lag to WMDs and NBC (Emergency War Surgery Series) by Progressive Management
Cover of the book U.S. Air Force Aerospace Mishap Reports: Accident Investigation Boards for UAV/UAS Remotely Piloted Aircraft (RPA) Incidents Involving the EQ-4B Global Hawk and MQ-1B Predator in 2011 and 2012 by Progressive Management
Cover of the book National Defense Intelligence College Paper: Critical Thinking and Intelligence Analysis - Sherman Kent, NSA, JFK, Cuban Missile Crisis, Inductive, Deductive, Abductive Reasoning by Progressive Management
Cover of the book 2011 After the Nuclear Meltdown: Crucial Survival and Medical Data for Nuclear Power Plant and Radiation Accidents and Terrorism - Essential Emergency Information for You and Your Family by Progressive Management
Cover of the book Pakistan's Nuclear Future: Reining in the Risk - Indo-Pakistani Nuclear Confrontation, Risk of Nuclear War in South Asia, Pakistan Economy, Nuclear Power, Demographics, Alternative Ethnic Futures by Progressive Management
We use our own "cookies" and third party cookies to improve services and to see statistical information. By using this website, you agree to our Privacy Policy