SecurityWorldHotel

21/03/2017

University develops technique for preventing cyber attacks

Beer Sheva, Israel

A Ben-Gurion University of the Negev (BGU) researcher has developed a new technique that could provide virtually 100 percent protection against cyber attacks launched through internet videos or images, which are a growing threat.

“Any downloaded or streamed video or picture is a potential vehicle for a cyber attack,” says Professor Ofer Hadar, chair of BGU’s Department of Communication Systems Engineering. “Hackers like videos and pictures because they bypass the regular data transfer systems of highly secure systems, and there is significant space in which to implant malicious code.”

Cyber security has become a high-profile issue, made even more so by recent Wikileaks allegations against the Central Intelligence Agency, accusing them of bypassing security encryption on a variety of smart devices.

Yet, attacks on internet video and pictures are a broader, lesser-known threat. Internet video will comprise 82 percent of all global consumer internet traffic by 2020, according to the 2016 Cisco Visual Networking Index research report. As a result, downloaded and shared videos and images are a growing target for cyber attackers.

To counter this emerging threat, Prof. Hadar developed a series of algorithms that can completely prevent attackers from being able to infiltrate and extract information through videos or pictures.

His techniques combat steganography, a process that involves hiding a message in an appropriate carrier, such as an image file. Utilising steganography, the carrier can be sent to a receiver without anyone else knowing that it contains a hidden message.

“We are dealing nowadays with the use of steganography to insert malicious codes within videos and photos to attack the viewer,” explains Prof. Hadar. “We have developed algorithms to find a solution to that problem in the ‘compressed domain.’ The idea is to manipulate the file’s ‘payload’ to remove the malicious code without damaging the data quality.”

Prof. Hadar’s approach, which he has dubbed The Coucou Project, addresses two potential attack scenarios. Both scenarios assume that basic malware has been planted on the victim's servers/hosts by means of social engineering, such as phishing scams or other means of exploiting data vulnerability. From there, the malware gathers classified information from the victim's data centre.

In the first scenario, once the user uploads an image or a video to a social network, the malware embeds the classified information into the uploaded content (making it accessible to the attacker). In the second scenario, the attacker uploads infected content to a social network or any other shared server where the malware can extract the malicious code and execute it.

“Preliminary experimental results show that a method based on a combination of Coucou Project techniques results in virtually 100 percent protection against cyber attacks,” says Prof. Hadar. “We envision that firewall and antivirus companies will be able to utilise Coucou protection applications and techniques in their products."

The Coucou Project receives funding from the BGU Cyber Security Research Center and the Basecamp Innovation Center at the Advanced Technologies Park adjacent to BGU, which is interested in developing the protective platform into a commercial enterprise.


Tags

Product News

Dahua Nvidia partnership offers Deep Sense smart video server

The “Deep Insight, Deep Cooperation” – Dahua Smart GPU Product Release Conference was held in Hangzhou in March. Together with Nvidia, a world-leading Artificial Intelligence (AI) computing company, Dahua released the Deep Sense server for smart video structure analysis, designed with extremely high computing capability. Mr. Yang Yinchang, General Manager of Dahua R&D Center, Dr. Pan Shizhu, President of Dahua Institute of Advanced Technology, as well as Mr. Shen Wei, VP of Nvidia participated in the new product release conference.

Business News

The key to successful safe cities is a collaborative approach

For the first time in history, more people around the world live in cities than in rural areas. By 2030, over 60 percent of the world’s population will be living in cities. While this global migration to urban areas improves the living standards, health and financial prosperity of these citizens, it brings challenges to a city’s infrastructure, resources, security procedures and emergency response systems. Meeting these challenges is critical to the success of cities in the decades that follow, and IHS Markit analysts have produced a market insight report exploring the potential benefits of the Safe City concept.

Business News

Multi-factor authentication market strengthens with growing cyber threats

According to the latest market research report from Marketsandmarket the multifactor authentication market  is expected to grow at a CAGR of 15.52% to reach USD 12.51 Billion by 2022. Factors such as an increase in data breaches and cyber attacks, stringent regulations and the growing pressure of data security compliances, and the growing adoption of BYOD concept among enterprises are driving the growth of the multifactor authentication market.

Business News

Cyber security focus for Israel's first Secure-By-Design Government facility

Cyberbit, the wholly owned subsidiary of Elbit Systems, whose cyber security solutions protect some of the world’s most sensitive systems, has been selected by the Arison Group – Solel Boneh Infrastructure, one of Israel's most prominent construction and infrastructure companies, to provide its cyber security product suite for the new Ram Compound, an ultra-secure facility under construction in the Israeli capital. The Ram Compound will serve as headquarters for sensitive government ministries and will integrate physical and cyber security to achieve unprecedented resilience.

Product Suppliers
Back to top