The project investigates the detection of malware from its communication with a command&control server, even when the communication is encrypted and thus not available in plaintext. To this end, we investigate the use of encrypted communication by malware, which is different from encryption in normal communication, as the normal encryption software is not used by malware due to restrictions in access or complexity.
Detection of malware is a first step to its eviction and thus an important contribution to cyber security.
Warsaw University of Technology (Poland), National Research Council of Italy Institute for Applied Mathematics and Information Technologies (Italy), ITTI Sp. z o. o. (Poland), Netzfactor GmbH (Germany)
Prof. Dr. Jörg Keller