A Study of Rootkit Stealth Techniques and Associated Detection Methods

Abstract

In today's world of advanced computing power at the fingertips of any user, we must constantly think of computer security. Information is power and this power is had within our computer systems. If we can not trust the information within our computer systems then we can not properly wield the power that comes from such information. Rootkits are software programs that are designed to develop and maintain an environment in which malware may hide on a computer system after successful compromise of that computer system. Rootkits cut at the very foundation of the trust that we put in our information and subsequent power. This thesis seeks to understand rootkit hiding techniques, rootkit finding techniques and develops attack trees and defense trees in order to help us identify deficiencies in detection to further increase the trust in our information systems.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Mar 01, 2007
Accession Number
ADA519999

Entities

People

  • Daniel D. Nerenberg

Organizations

  • Air Force Institute of Technology

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Air Force
  • Application Software
  • Computers
  • Cybersecurity
  • Denial Of Service Attack
  • Detection
  • Detectors
  • Device Drivers
  • Information Operations
  • Information Security
  • Information Systems
  • Instructions
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Malware
  • Operating Systems

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Strategic Security Studies
  • Systems Analysis and Design

Technology Areas

  • Cyber