Premium
VoterChoice: A ransomware detection honeypot with multiple voting framework
Author(s) -
Keong Ng Chee,
Rajasegarar Sutharshan,
Pan Lei,
Jiang Frank,
Zhang Leo Yu
Publication year - 2020
Publication title -
concurrency and computation: practice and experience
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.309
H-Index - 67
eISSN - 1532-0634
pISSN - 1532-0626
DOI - 10.1002/cpe.5726
Subject(s) - ransomware , honeypot , computer science , gateway (web page) , voting , computer security , malware , world wide web , politics , political science , law
Summary This research presents a novel framework comprising the IPS gateway, analysis system, and honeypot for identifying and detecting ransomware based on the client honeypot concept, and active interception of downloads using Suricata inline intruder prevention system. Unlike previous frameworks that report on the accuracy rate of detecting ransomware, the proposed framework features a multiple voting platform for the validation of confidence levels in the accuracy detection rates. The proposed framework achieves high accuracy levels than other machine learning models for the detection of ransomware.