Skip to Main content Skip to Navigation
Reports

Strong Cryptography Armoured Computer Viruses Forbidding Code Analysis: the bradley virus

Eric Filiol 1
1 CODES - Coding and cryptography
Inria Paris-Rocquencourt
Abstract : Imagining what the nature of future viral attacks might look like is the key to successfully protecting against them. This paper discusses how cryptography and key management techniques may definitively checkmate antiviral analysis and mechanisms. We present a generic virus, denoted bradley which protects its code with a very secure, ultra-fast symmetric encryption. Since the main drawback of using encryption in that case lies on the existence of the secret key or information about it within the viral code, we show how to bypass this limitation by using suitable key management techniques. Finally, we show that the complexity of the bradley code analysis is at least as high as that of the cryptanalysis of its underlying encryption algorithm.
Document type :
Reports
Complete list of metadata

https://hal.inria.fr/inria-00070748
Contributor : Rapport de Recherche Inria <>
Submitted on : Friday, May 19, 2006 - 9:30:12 PM
Last modification on : Friday, May 25, 2018 - 12:02:03 PM
Long-term archiving on: : Sunday, April 4, 2010 - 9:50:29 PM

Identifiers

  • HAL Id : inria-00070748, version 1

Collections

Citation

Eric Filiol. Strong Cryptography Armoured Computer Viruses Forbidding Code Analysis: the bradley virus. [Research Report] RR-5250, INRIA. 2004, pp.10. ⟨inria-00070748⟩

Share

Metrics

Record views

372

Files downloads

1037