Backup Solid State Drive for Ransomware Protection
Keywords:
SSD: Solid State Drive, Ransomware: Malicious software that blocks file access, PC backup, encrypted, remote desktop protocol (RDP)Abstract
Ransomware is a type of malicious software that can block a users’ access to their own files and restricts access until a ransom amount is paid. There is no certainty that we would get our files back even after paying the ransom amount. Since these ransomware attacks are increasing day by day and are causing heavy losses to people, we have proposed a new backup based ransomware defense system along with a feature of malicious files scanning. This software works on the principle of automatic backup and detects the newly added files in the system in realtime and instantly back ups them in the destination folder, which is embedded into a Solid State Drive (SSD). The software itself also resides in the SSD drive because being separated from the host machine provides better data protection than the softwares which are inside the machines as they are vulnerable to ransomware attack, this also helps it to operate in various environments. The software provides several options to the user which includes, simple PC backup, android backup, automatic backup, as well as cryptic backup. Users can also scan their files to check if the files are safe.
References
Beaman C, Barkworth A, Akande TD, Hakak S, Khan MK. Ransomware: recent advances, analysis, challenges and future research directions. Comput Secur. 2021 Dec 1;111:102490. doi: 10.1016/j.cose.2021.102490.
Baek S, Jung Y, Mohaisen D, Lee S, Nyang D. SSD-assisted ransomware detection and data recovery techniques. IEEE Trans Comput. 2020 Jul 22;70(10):1762–76. doi: 10.1109/TC.2020.3011214.
Ahn NY, Lee DH. Forensic issues and techniques to improve security in SSD with flex capacity feature. IEEE Access. 2021 Dec 20;9:167067–75. doi: 10.1109/ACCESS.2021.3136483.
Huang J, Xu J, Xing X, Liu P, Qureshi MK. FlashGuard: leveraging intrinsic flash properties to defend against encryption ransomware. Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security (CCS '17). Association for Computing Machinery, New York, NY, USA, 2231–44. doi: 10.1145/3133956.3134035.
Layton R. (2010). Engineering Rules! Recruiting Presentation to UC Berkeley Engineering Students. [online] Sandia National Laboratories (SNL-CA). Livermore, CA; 2010 Oct 1. Available from: https://www.osti.gov/servlets/purl/1675096.
Baek S, Jung Y, Mohaisen A, Lee S, Nyang D. SSD-Insider: Internal Defense of Solid-State Drive against Ransomware with Perfect Data Recovery. 2018 IEEE 38th International Conference on Distributed Computing Systems (ICDCS), Vienna, Austria, 2018, pp. 875–84, doi: 10.1109/ICDCS.2018.00089.
Trellix. (2022). Ransomware & Threats. [online] Trellix. available from: https://www.trellix.com/en-in/security-awareness/ransomware.html
Shaukat SK, Ribeiro VJ. RansomWall: A layered defense system against cryptographic ransomware attacks using machine learning. 2018 10th international conference on communication systems & networks (COMSNETS). 2018, Jan 3 (pp. 356-363). IEEE. DOI:10.1109/COMSNETS.2018.8328219.
Paleri P. Cyber security (cybersec) (cs). In: Revisiting National Security: Prospecting Governance for Human Well-Being. Singapore: Springer Nature Singapore; 2022. pp. 909-45.
Scaife N, Carter H, Traynor P, Butler KR. CryptoLock (and Drop It): Stopping Ransomware Attacks on User Data. 2016 IEEE 36th International Conference on Distributed Computing Systems (ICDCS), Nara, Japan, 2016, pp. 303–12. doi: 10.1109/ICDCS.2016.46.
Park J, Jung Y, Won J, Kang M, Lee S, Kim J. RansomBlocker: A low-overhead ransomware-proof SSD. Proceedings of the 56th Annual Design Automation Conference. June 2019, p. 1-6. doi: 10.1145/3316781.3317889.
Imaji AO. Ransomware Attacks: Critical Analysis, Threats, and Prevention methods. Fort Hays State University, Hays, Kansas; March 5, 2019.
Maurya AK, Kumar N, Agrawal A, Khan RA. Ransomware Evolution, Target and Safety Measures. Int J Comput Sci Eng. 2018 Jan 31;6(1):80-5. doi: 10.26438/ijcse/v6i1.8085.
Min D, Park D, Ahn J, Walker R, Lee J, Park S et al. Amoeba: an autonomous backup and recovery SSD for ransomware attack defense. IEEE Comput Archit Lett. 2018 Nov 28;17(2):245-8. doi: 10.1109/LCA.2018.2883431.
Canfora G, Mercaldo F, Visaggio CA. An HMM and structural entropy based detector for android malware: an empirical study. Comput Sec. 2016 Aug 1;61:1-18. doi: 10.1016/j.cose.2016.04.009.
Gazet A. Comparative analysis of various ransomware virii. Journal in computer virology. Feb 2010; 6: 77-90. Available at: https://doi.org/10.1007/s11416-008-0092-2.
Kharraz A, Robertson W, Kirda E. Protecting against ransomware: A new line of research or restating classic ideas? IEEE Secur Privacy. 2018 Jun 25;16(3):103–7. doi: 10.1109/MSP.2018.2701165.
Luo X, Liao Q. Awareness education as the key to ransomware prevention. Inf Syst Sec. 2007 Sep 4;16(4):195–202. doi: 10.1080/10658980701576412.
Kapoor A, Gupta A, Gupta R, Tanwar S, Sharma G, Davidson IE. Ransomware detection, avoidance, and mitigation scheme: a review and future directions. Sustainability. 2021 Dec 21;14(1):8. doi: 10.3390/su14010008.
Szücs V, Arányi G, Dávid Á. Introduction of the ARDS—anti-ransomware defense System model—based on the systematic review of worldwide ransomware attacks. Appl Sci. 2021 Jun 30;11(13):6070. doi: 10.3390/app11136070.
