Windows Rootkits: Attacks and Countermeasures

CC
CTC
2010
2010 Second Cybercrime and Trustworthy Computing Workshop
Abstract - Windows Rootkits: Attacks and Countermeasures

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Desmond Lobo Articles by Paul Watters Articles by Xin-Wen Wu Articles by Li Sun

2010 Second Cybercrime and Trustworthy Computing Workshop

Ballarat, Victoria Australia

July 19-July 20

ISBN: 978-0-7695-4186-0

	ASCII Text	x
	Desmond Lobo, Paul Watters, Xin-Wen Wu, Li Sun, "Windows Rootkits: Attacks and Countermeasures," Cybercrime and Trustworthy Computing, Workshop, pp. 69-78, 2010 Second Cybercrime and Trustworthy Computing Workshop, 2010.

	BibTex	x
	@article{ 10.1109/CTC.2010.9, author = {Desmond Lobo and Paul Watters and Xin-Wen Wu and Li Sun}, title = {Windows Rootkits: Attacks and Countermeasures}, journal ={Cybercrime and Trustworthy Computing, Workshop}, volume = {0}, year = {2010}, isbn = {978-0-7695-4186-0}, pages = {69-78}, doi = {http://doi.ieeecomputersociety.org/10.1109/CTC.2010.9}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Cybercrime and Trustworthy Computing, Workshop TI - Windows Rootkits: Attacks and Countermeasures SN - 978-0-7695-4186-0 SP69 EP78 A1 - Desmond Lobo, A1 - Paul Watters, A1 - Xin-Wen Wu, A1 - Li Sun, PY - 2010 KW - computer security KW - malicious software (malware) KW - rootkits KW - Microsoft Windows KW - Intel's ring architecture VL - 0 JA - Cybercrime and Trustworthy Computing, Workshop ER -

Desmond Lobo

Paul Watters

Xin-Wen Wu

Li Sun

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CTC.2010.9

Windows XP is the dominant operating system in the world today and root kits have been a major concern for XP users. This paper provides an in-depth analysis of the root kits that target that operating system, while focusing on those that use various hooking techniques to hide malware on a machine. We identify some of the weaknesses in the Windows XP architecture that root kits exploit and then evaluate some of the anti-root kit security features that Microsoft has unveiled in Vista and 7. To reduce the number of root kit infections in the future, we suggest that Microsoft should take full advantage of Intel’s four distinct privilege levels.

Index Terms:

computer security, malicious software (malware), rootkits, Microsoft Windows, Intel's ring architecture

Citation:

Desmond Lobo, Paul Watters, Xin-Wen Wu, Li Sun, "Windows Rootkits: Attacks and Countermeasures," ctc, pp.69-78, 2010 Second Cybercrime and Trustworthy Computing Workshop, 2010

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.