@inproceedings{acca3ec58ee64b90ac63c4835ca67ac5,
title = "Ransomware prevention using application authentication-based file access control",
abstract = "Ransomware emerged in recent years as one of the most significant cyber threats facing both individuals and organizations, inflicting global damage costs that are estimated upwards of $1 billion in 2016 alone [23]. The increase in the scale and impact of recent ransomware attacks highlights the need of finding effective countermeasures. We present AntiBotics - a novel system for application authentication-based file access control. AntiBotics enforces a file access-control policy by presenting periodic identification/ authorization challenges. We implemented AntiBotics for Windows. Our experimental evaluation shows that contemporary ransomware programs are unable to encrypt any of the files protected by AntiBotics and that the daily rate of challenges it presents to users is very low. We discuss possible ways in which future ransomware may attempt to attack AntiBotics and explain how these attacks can be thwarted.",
keywords = "Access control, Antibotics, Authorization, Biometrics, Ransomware",
author = "Or Ami and Yuval Elovici and Danny Hendler",
note = "Publisher Copyright: {\textcopyright} 2018 ACM.; 33rd Annual ACM Symposium on Applied Computing, SAC 2018 ; Conference date: 09-04-2018 Through 13-04-2018",
year = "2018",
month = apr,
day = "9",
doi = "10.1145/3167132.3167304",
language = "English",
series = "Proceedings of the ACM Symposium on Applied Computing",
publisher = "Association for Computing Machinery",
pages = "1610--1619",
booktitle = "Proceedings of the 33rd Annual ACM Symposium on Applied Computing, SAC 2018",
}