Open repository for the evaluation of ransomware detection tools
| dc.contributor.author | Berrueta Irigoyen, Eduardo | |
| dc.contributor.author | Morató Osés, Daniel | |
| dc.contributor.author | Magaña Lizarrondo, Eduardo | |
| dc.contributor.author | Izal Azcárate, Mikel | |
| dc.contributor.department | Ingeniaritza Elektrikoa, Elektronikoaren eta Telekomunikazio Ingeniaritzaren | eu |
| dc.contributor.department | Institute of Smart Cities - ISC | en |
| dc.contributor.department | Ingeniería Eléctrica, Electrónica y de Comunicación | es_ES |
| dc.date.accessioned | 2020-07-03T12:54:10Z | |
| dc.date.available | 2020-07-03T12:54:10Z | |
| dc.date.issued | 2020 | |
| dc.description.abstract | Crypto-ransomware is a type of malware that encrypts user files, deletes the original data, and asks for ransom to recover the hijacked documents. Several articles have presented detection techniques for this type of malware; these techniques are applied before the ransomware encrypts files or during its action in an infected host. The evaluation of these proposals has always been accomplished using sets of ransomware samples that are prepared locally for the research article, without making the data available. Different studies use different sets of samples and different evaluation metrics, resulting in insufficient comparability. In this paper, we describe a public data repository containing the file access operations of more than 70 ransomware samples during the encryption of a large network shared directory. These data have already been used successfully in the evaluation of a network-based ransomware detection algorithm. Now, we are making these data available to the community and describing their details, how they were captured, and how they can be used in the evaluation and comparison of the results of most ransomware detection techniques. | en |
| dc.description.sponsorship | This work was supported by the Spanish MINECO under Project TEC2015-69417-C2-2-R and Project PID2019-104451RB-C22. | en |
| dc.format.extent | 12 p. | |
| dc.format.mimetype | application/pdf | en |
| dc.identifier.citation | E. Berrueta, D. Morato, E. Magaña and M. Izal, 'Open Repository for the Evaluation of Ransomware Detection Tools,' in IEEE Access, vol. 8, pp. 65658-65669, 2020, doi: 10.1109/ACCESS.2020.2984187. | en |
| dc.identifier.doi | 10.1109/ACCESS.2020.2984187 | |
| dc.identifier.issn | 2169-3536 | |
| dc.identifier.uri | https://academica-e.unavarra.es/handle/2454/37294 | |
| dc.language.iso | eng | en |
| dc.publisher | IEEE | en |
| dc.relation.ispartof | IEEE Access, 2020, 8, 65658-65669 | en |
| dc.relation.projectID | info:eu-repo/grantAgreement/MINECO//TEC2015-69417-C2-2-R/ES/ | |
| dc.relation.publisherversion | https://doi.org/10.1109/ACCESS.2020.2984187 | |
| dc.rights | This work is licensed under a Creative Commons Attribution 4.0 License. | en |
| dc.rights.accessRights | info:eu-repo/semantics/openAccess | |
| dc.subject | Ransomware | en |
| dc.subject | Open repository | en |
| dc.subject | Traffic analysis | en |
| dc.title | Open repository for the evaluation of ransomware detection tools | en |
| dc.type | info:eu-repo/semantics/article | |
| dc.type.version | info:eu-repo/semantics/publishedVersion | |
| dspace.entity.type | Publication | |
| relation.isAuthorOfPublication | 66d6a070-df96-4f8b-ba63-cb0a93f576ce | |
| relation.isAuthorOfPublication | cd454059-725e-480a-b896-894e79f307a5 | |
| relation.isAuthorOfPublication | c521bf55-a1e7-47b2-ac98-5fbf8c286f7a | |
| relation.isAuthorOfPublication | f829a159-0938-45d1-a352-d28fb297ed0b | |
| relation.isAuthorOfPublication.latestForDiscovery | 66d6a070-df96-4f8b-ba63-cb0a93f576ce |