Spelling suggestions: "subject:"sandbox"" "subject:"brandbox""
31 |
Discovering and masking environmental features in modern sandboxesLjungberg, Alexander, Smedberg, Simon January 2022 (has links)
Background. The awareness of cyber attacks in businesses is increasing with the rising number of cyber incidents for businesses. With nearly 350 000 new malware detected per day, there is a big incentive to allocate resources to company infrastructure to mitigate malware. These solutions require scalability not to become bottlenecks and expensive. Therefore, to combat malware, automated solutions have been developed. The automated solutions comprises isolated virtual environments (sandbox), automated analysis, and reports. As a response from malware developers, malware has evolved to become aware of its environment, which has led to an arms race between malware developers and analysts. Objectives. In this thesis, we study how malware can identify sandbox environments and attempt to find appropriate values for masking system information (features). Methods. First, we research previous techniques to identify sandbox environments and consult with Windows environment experts from Truesec. We found 179 features to examine. Then, we gather a dataset of 2448 non-sandbox samples and 77 sandbox samples with a probing method. We use the statistical test Mann-Whitney U-test to identify features that differ between the dataset's groups. We conduct masking on a dataset level and evaluate it with a method similar to k-fold cross-validation using a random forest classifier. Furthermore, we analyze each feature's ability to detect sandboxes with the feature importance calculated by the Mean Decrease in Impurity (MDI). Results. We found 156 out of 179 features that reveal sandbox environments. Which seven out of those features could independently expose sandboxes, i.e., it was possible to classify all sandboxes and non-sandboxes with only one of them. The masking evaluation indicates that our proposed methods are effective at masking the sandboxes. The results of the feature importance showed that Windows Management Instrumentation (WMI) is an ideal source of information when it comes to exposing sandbox environments. Conclusions. Based on the result, we conclude that various values can expose a sandbox. Furthermore, we conclude that our method to find masking values is adequate and the proposed masking methods successfully masks sandbox samples. Lastly, we conclude that there needs to be a change of focus from evasion techniques to masking implementations in the research field. / Bakgrund. Medvetenheten om cyberattacker i företag ökar med det ökande antalet cyberincidenter mot företag. Med nästan 350 000 nya skadliga program som upptäcks per dag, finns det ett stort incitament att allokera resurser till företagets infrastruktur för att motarbeta denna typ av attack. Dessa lösningar kräver skalbarhet för att inte bli flaskhalsar och dyra. Därför har automatiserade lösningar utvecklats för att bekämpa skadlig programvara. De automatiserade lösningarna omfattar isolerade virtuella miljöer (sandlådor), automatiserad analys och rapporter. Som ett svar från utvecklare av skadlig programvara har skadlig programvara utvecklats till att bli medveten om sin miljö, vilket har lett till en kapprustning mellan utvecklare av skadlig programvara och analytiker. Syfte. I den här artikeln studerar vi hur skadlig programvara kan identifiera sandlådemiljöer och försöka hitta lämpliga värden för att maskera systeminformation (parametrar). Metod. Först undersöker vi tidigare tekniker för att identifiera sandlådemiljöer och rådgör med Windows-miljöexperter från Truesec. Vi hittade 179 parametrar att undersöka. Sedan samlar vi en datauppsättning med 2448 icke-sandlådeprover och 77 sandlådeprover med en sonderingsmetod. Vi använder det statistiska testet Mann-Whitney U-test för att identifiera parametrar som skiljer sig åt mellan datamängdens grupper. Vi utför maskering på datauppsättningsnivå och utvärderar den med en metod som liknar k-faldig korsvalidering med hjälp av en random forest klassificerare. Vidare analyserar vi hur viktig varje parameter är för klassificeraren för att utvärdera parametrarnas förmåga att avslöja sandlådor. Resultat. Vi hittade 156 av 179 parametrar som avslöjar sandlådemiljöer. Vilka sju av dessa parametrar kunde oberoende avslöja sandlådor, det vill säga det var möjligt att klassificera alla sandlådor och icke-sandlådor med endast en av dem. Maskeringsutvärderingen indikerar att våra föreslagna metoder är effektiva för att maskera sandlådorna. Resultaten av viktigheten för parametrarna visade att Windows Management Instrumentation (WMI) är en ideal informationskälla när det gäller att exponera sandlådemiljöer. Slutsatser. Baserat på resultatet drar vi slutsatsen att olika värden kan exponera en sandlåda. Dessutom drar vi slutsatsen att vår metod för att hitta maskeringsvärden är adekvat och de föreslagna maskeringsmetoderna maskerar framgångsrikt sandlådeprover. Slutligen drar vi slutsatsen att det måste ske en förändring av fokus från undanflyktstekniker till maskeringsimplementeringar inom forskningsfältet.
|
32 |
Lifesigns: Successful Storytelling in Open-World GamesPerkins, Kyle Eric 03 December 2010 (has links)
No description available.
|
33 |
Dynamique de formation et de déformation de minibassins en contexte compressif : exemple du bassin de Sivas, Turquie Approche terrain et implications structurales multiéchelles / Evolution of minibasins in compressive setting. The case of the Sivas Basin, TurkeyKergaravat, Charlie 30 March 2016 (has links)
Cette thèse porte sur les interactions entre les déformations halocinétiques locales au sein des mini-bassins salifères et les déformations régionales compressives. L’étude s’appuie sur une analyse structurale multi-échelle détaillée d’une province à mini-bassins se développant dans le bassin d’avant pays de Sivas (Turquie). Une analyse de terrain approfondie, associée à une étude de données de subsurface, permet de proposer une révision des cartes géologiques ainsi qu’une évolution tectonosédimentaire identifiant les déformations liées à la tectonique salifère et celles liées à la propagation de la ceinture de plis et de chevauchements dans l’avant-pays. A partir de l’Eocène supérieur, le fluage del’évaporite autochtone, initié et entretenu par le chargement sédimentaire différentiel ainsi que par la déformation compressive, permet la formation d’une première génération de mini-bassins. Ces minibassins, constitués par une formation continentale Oligocène, vont être recouverts par une nappe d’évaporite allochtone accueillant une seconde génération de mini-bassins constitués de formations continentales et marines Oligo-Miocène. L’initiation du domaine de mini-bassins secondaires est caractérisée par une distribution polygonale du réseau de diapirs et de murs d’évaporites. Ces mini-bassins enregistrent localement les effets de la tectonique salifère par le développement d’une grande variété de structures halocinétiques à différentes échelles telles que les séquences halocinétiques unitaires (crochet et éventail), séquences composites (tabulaire ou fuseau) et megaflaps. Une série de modélisation analogique préliminaire amontré que ces structures peuvent se développer avec ou sans l’application d’une compression aux limites. De plus, les analogies géométriques entre les mini-bassins de Sivas et les provinces salifères connues suggèrent que la dynamique de formation de ces mini-bassins est au premier ordre contrôlée par le chargement sédimentaire différentiel, découplé partiellement de la compression régionale. Néanmoins, l’analyse du réseau de fractures et de l’endommagement matriciel souligne l’enregistrement précoce de la déformation compressive régionale lors de l’initiation des mini-bassins.L’influence du raccourcissement sur la structuration de la province à mini-bassins s’exprime de manière croissante par l’écrasement des corps salifères permettant : (i) le développement de dépocentres linéaires préférentiellement perpendiculaire à la direction de raccourcissement, (ii) l’émergence de corps allochtones d’évaporites en surface, ainsi que (iii) la rotation et translation des mini-bassins. Cette province à mini-bassins génère une discontinuité dans la propagation et l’accommodation de la déformation compressive : la déformation compressive est accommodée auniveau du réseau polygonal de murs d’évaporites formant des structures multidirectionnelles. De plus, cette concentration de la déformation par écrasement des structures salifères entraine la remobilisation des évaporites vers l’avant-pays générant alors un nouveau système salifère. / This doctoral work studies the interaction between withdrawal of minibasins and regional shortening during evolution of a foreland fold-and-thrust belt. This is achieved by a multiscale structural analysis of the Sivas Basin (Turkey). Extensive field work and regional seismic lines interpretations helped to build a new and detailed geologic map of the central Sivas Basin and to provide a new tectonosedimentary framework highlighting the influence of salt tectonics and the regional shortening, starting in the Late Eocene by the autochthonous evaporite deposition. This level is remobilized by the northward migrating sedimentary load, shortening and tilting of the basin southern margin during propagation of the foreland fold-and-thrust belt. Evaporite flow is recorded by the withdrawal of a primary generation of continental Oligocene minibasins which are then covered by an evaporite canopy. The canopy extending northward allows the development of second generation of continental to shallow marine mini-basins from Oligocene to Middle Miocene. Secondary minibasins initiation in the central part of the Basin, is characterized by sub-circular minibasins surrounded by polygonal diapirs and walls. Flanking these minibasins, a large variety of halokinetic structures is described: halokinetic sequences (hooks and wedges), composite halokinetic sequences and megaflaps. Preliminary sand-box modeling study suggests the development of thesehalokinetic structures both with and without shortening. Furthermore, minibasins geometries are closely similar to those imaged or mapped in other salt provinces suggesting that mini-basin withdrew is first control by sedimentary load, probably due to decoupling by the salt. However, the fractures and anisotropy of magnetic susceptibility analyses suggests the record of shortening since the minibasins initiation. The increase influence of regional shortening on the minibasins domain is expressed by salt walls and diapirs squeezing inducing: (i) the development of linear mini-basins perpendicular to the shortening direction, (ii) salt sheet emplacement and (iii) the translation/rotation of minibasins. The minibasins province produces a discontinuity for the fold-and-thrust belt propagation. Indeed, the minibasins province accommodates the shortening deformation along the polygonal network of salt walls and diapirs forming multidirectional structures. Furthermore, the regional shortening accommodation by salt structures squeezing produce an evaporitic remobilization and migration of a salt canopy toward the foreland basin. / Bu doktora tezi/çalışması, bir önülke kıvrım ve bindirme kuşağının evrimi sırasında minihavzaların çekilmesi ve bölgesel kısalma arasındaki etkileşimi konu edinir. Çoklu ölçekteki bu yapısal analiz Sivas Havzası (Türkiye) ölçeğinde gerçekleştirilmiştir. Kapsamlı saha çalışması ve bölgesel olarak sismik kesitlerden ortaya çıkarılan yorumlamalar, Sivas Havzası’nın orta kesiminde detaylı bir jeolojik haritalama yapımına yardımcı olmuş ve otokton evaporit depolanmasının başladığı Geç Eosen’den başlayarak havza için tuz tektoniği ve bölgesel kısalmanın etkisindeki yeni bir tektono-sedimanter çatının ortaya çıkarılmasına neden olmuştur. Söz konusu seviye, önülke kıvrım ve bindirme kuşağının ilerlemesisüresince kuzeye doğru sedimanter dolgunun göçüyle birlikte havzanın güney kenarında kısalıma uğrayarak ve eğim kazanarak remobilize olmuştur. Evaporit akışı, kıtasal Oligosen minihavzalarının ilksel olarak oluşumundan sonra çekilmesine bağlı olarak gözlenmiş ve sonrasında evaporit yaygılarıyla örtülmüştür. Kuzeye kadar uzanan bu yaygı, Oligosen-Orta Miyosen arasında kıtasaldan sonra sığ denizel tipteki ikincil minihavzaların gelişimine de neden olmuştur.Havzanın orta kesimindeki ikincil minihavza başlangıcı, poligonal diyapir ve duvarlar tarafından çevrelenen dairesel minihavzalarla karakterize olur. Bu minihavzaların kanatlarında halokinetik yapılar tanımlanmıştır. Kanca (hook) ve kama (wedge) tiplerde olmak üzere halokinetik seriler, kompozit halokinetik seriler ve megaflaplar bu yapılar arasında sayılabilir. Çalışmanın başlangıcında yapılan kum kutusu model deneyi, bu halokinetik yapıların kısalmayla veya kısalma olmaksızın geliştiğini göstermiştir. Buna ek olarak minihavzaların geometrisi, muhtemelen tuzun ayrışmasından dolayı tortul yükün ilkkontrolünden dolayı çekilen diğer tuz bölgelerinde önerilen haritalanmış minihavzalara benzerdir. Bununla birlikte kırık ve manyetik suseptibilite analizleri, minihavzaların başlangıcından itibaren kısalmanın kayıt edilebilmesi hakkında fikir vermektedir. Minihavza bölgelerindeki bölgesel kısalımın artışı, tuz duvarları ve diyapirlerin sıkışmasıyla birlikte(i) kısalma yönüne dik durumdaki çizgisel minihavzaların gelişimi, (ii) tuz örtülerinin yerleşimi ve (iii) minihavzaların yer değiştirmesi veya dönmesiyle açıklanır. Minihavzalar bölgesi, kıvrım ve bindirme kuşağının gelişimi için bir süreksizlik üretir. Aslında, minihavzalar birçok yönde yapılar oluşturarak tuz duvarları ve diyapirlerin polygonal şekildeki yerleşimi boyunca kısalma deformasyonuna eşlik eder. Üstelik, tuz yapılarının eşlik ettiği bölgesel kısalma önülke havzalarına doğru evaporitik bir göçe de neden olmaktadır.
|
34 |
Finansiell innovation på betaltjänstmarknaden : En studie av hur tredjepartsleverantörers innovationsförmåga kan främjas genom inrättandet av det andra betaltjänstdirektivet samt andra regleringsrelaterade åtgärder / Financial Innovation in the Payment Services Market : A Study of How Third Party Provider´s Innovation Capability Can Be Promoted through the Establishment of the Second Payments Services Directive and Other Regulatory Related MeasuresBjörklund, Jessica January 2018 (has links)
Sedan den finanskris som uppstod år 2008 har ökade krav ställts beträffande säkerhet ochstabilitet inom den finansiella sektorn. Av den orsaken har etablerade aktörer, vilka omfattas avde alltmer extensiva regelverken, påförts ytterligare krav avseende exempelvis tillsyn ochlikviditet. De ökade säkerhetskraven har, i sin tur, tvingat berörda aktörer att agera merrestriktivt beträffande finansiell innovation och vid utvecklandet av nya finansiella lösningar. Den tekniska utvecklingen har möjliggjort för uppkomsten av nya typer av betaltjänster ochprodukter. Det har resulterat i att etablerade finansiella aktörer, under det senaste decenniet, harmött nya utmaningar i form av en ökad konkurrens från fintechbolag vilka, vid sidan avbefintliga regelverk, har utvecklat innovativa tjänster och produkter specialiserade inom ettspecifikt led inom kundkontaktskedjan. Med anledning av ikraftträdandet av det andrabetaltjänstdirektivet omfattas även fintechbolag av de bestämmelser som reglerarbetaltjänstmarknaden. Genom införandet av regelverket utökas omfattningen till att äveninbegripa leverantörer av kontoinformationstjänster och betalningsinitieringstjänster, så kalladetredjepartsleverantörer. Syftet med det andra betaltjänstdirektivet är bland annat att främjakonkurrens samt att effektivisera den finansiella marknaden. Samtidigt får inte den finansiellastabiliteten äventyras på bekostnad av ifrågavarande ändamål. För att främja finansiell innovation har vissa nationella tillsynsmyndigheter vidtagit olikaregleringsrelaterade åtgärder, såsom exempelvis en regulatorisk sandlåda, en innovationshubbeller ett innovationscenter. Med åtgärderna avses att med olika medel tillvarata den potentialsom fintech har att erbjuda finansmarknaden. Regleringsrelaterade åtgärder, vidtagna pånationell nivå, måste emellertid utvecklas och förhållas till gällande regelverk och får inte sättakonsumentskyddet på spel. I förevarande uppsats behandlas huruvida såväl det andra betaltjänstdirektivet som nationelltvidtagna regleringsrelaterade åtgärder förmår att främja tredjepartsleverantörersinnovationsförmåga på betaltjänstmarknaden, särskilt med beaktande av deras möjligheter attkonkurrera på den finansiella marknaden, utan att det sker på bekostnad av det finansiellasystemets stabilitet och säkerhet.
|
35 |
日本產業競爭力強化法之研究—兼論我國金融科技發展與創新實驗條例— / A Study of Japan’s Act on Strengthening Industrial Competitiveness: Focusing on the Comparison of Taiwan’s Act on Financial Technology Innovations and Experiments戴凡芹, Tai, Fan Chin Unknown Date (has links)
金融科技在近年來已成為企業界與學術界所討論的顯學,但如何有效兼顧監理、法令遵循與促進產業發展,並因應創新商業模式,設計出法規與監理措施,已成為一道難題。基於上述背景,監理沙盒的概念與制度應運而生。我國版的金融監理沙盒,已於2018年1月31日公布。然而,除了金融科技創新,其他產業同樣有創新的必要,在面臨既有法規的限制,同樣有所掣肘。金融科技以外的領域,是否有類似「監理沙盒」的機制,在不分產業別的狀況下,應用在創新的實驗?日本在2014年1月20日起施行的「產業競爭力強化法」,用於創新技術或服務的「企業實證特例制度」及「灰色地帶消除制度」兩項機制,即為不限金融科技領域,適用於各個產業的沙盒制度。
本研究透過檢視日本產業競爭力強化法,深究其內容及機制的優缺點,與推行實績及具體的兩個個案後,據以反思我國是否可透過參考「灰色地帶消除制度」、「企業實證特例制度」的運作,與各產業內的潛在創新者更緊密合作,以有利於未來當主管機關面臨創新與法規的衝撞時,掌握對於各產業的影響。回歸我國法制,本研究針對「金融科技發展與創新實驗條例草案」,包括立法目的、概要,條例中的申請及審查、監督及管理,及實驗期間法令之排除適用及法律責任豁免等議題進行研析,並針對日本推動新事業活動特例措施,與我國金融科技發展與創新實驗條例,進行比較。同時亦將監理沙盒模擬演練的過程中,針對演練的架構、步驟、實際狀況、回饋與心得,提出歸納成果,並針對業者與主管機關進行協商與溝通的階段,歸納出具有邏輯性與合理性的執行步驟與方法論,做為當業者在準備階段與主管機關往返溝通與提案時的參考。
本研究認為,當創新與科技在與金融結合時,創新服務與法規監管的本質不同,所造成的緊張與衝突在所難免,也因此更應該體認到數位時代下主管機關對於法規調適與鬆綁之必要性。在臚列我國於發展第三方支付立法的經驗作為前車之鑑,及剖析日本產業競爭強化法的制度與實績作為他山之石後,本研究認為新創事業無論在籌備階段、實驗階段、營運階段,對於法規的特例需求的確不同於一般事業。因此政府應秉持以下三項原則予以協助:(一)法規對新創企業應更友善且主動輔導、(二)抱持產業永續發展的思維看待新創產業、(三)消費者權益維護與企業營運必須兼顧。
本研究的另一研究結果為,經過個案模擬演練的操作後,歸納並提出七個執行步驟,並建議業者可針對此七個步驟進行腦力激盪與預先演練模擬,在有限的時間內以最高的效率備齊相關文件,以減少審核等待期。最後,本研究認為,業者與主管機關在議題協商時須充分考量有關於創新、業務、消保、法遵等四個面向的議題,且以公私協力的前提下,隨時調整並良性溝通。而主管機關更應加速金融科技的法規革新速度,並適度鬆綁不適用的法規,創造一個對於新創產業相對友善的法規環境,協助新創業者在業務上的發展,使我國能在金融科技戰場上決勝。 / In recent years, financial technology, aka FinTech, has become a significant study discussed by industries and academics. However, how to effectively manage supervisory, compliance with laws and promote industrial development, and how to design regulatory and supervisory measures in response to innovative business models have become a big challenge. Based on the abovementioned facts, the concept of Regulatory Sandbox came into being. Taiwan’s Act on Financial Technology Innovations and Experiments was released on January 31, 2018. Besides FinTech, innovation is equally necessary and indispensable for other industries that also restrained by the limitations of the existing laws and regulations. Are there any mechanisms similar with Regulatory Sandbox for those innovators in other industries? Japan released the Act on Strengthening Industrial Competitiveness on January 20, 2014, which provided two mechanisms, Special System for Corporate Field Tests and System to Remove Gray Zone Areas, for innovative technologies and services for all industries. This essay targets Japan’s and Taiwan’s Acts on Financial Technology Innovations as research objectives, discusses the investigations in both countuires, and provides suggestions for future works.
Firstly, this study explores the strengths and weaknesses of its contents and mechanisms by examining Japan’s Act on Strengthening Industrial Competitiveness, and aims at extending the practical angle to Taiwan for the future when facing the conflict between innovation and regulation. Secondly, the essay aims at studying Taiwan’s Act on Financial Technology Innovations and Experiments, and comparing the differences between Japan’s and Taiwan’s Acts. Finally, by observing the results of sandbox simulation exercises, this study elaborates implemental procedures, and logical methodologies as a reference for practitioners to communicate with and submit proposals to the authorities during the preparatory phase.
Due to the nature difference of innovation technology and financial supervision, it is considered that the tensions and conflicts are inevitable. Therefore, it is more necessary to amend the existing regulations or even deregulate for start-up. Furthermore, by learning from Taiwan's experience in developing third-party payment legislation and Japan's legislations and actual practices released, this study obtains that deregulation and coordination from government agencies considered highly important to startup operators in every stage. In terms of industry development, further suggestions are concluded in this research for government agencies, including (1) laws and regulations should be more friendly for new start-up, (2) to maintain the sustainable development of start-up industries and operators, and (3)-to achieve balance between the protection of consumer rights and business continuity.
After conducting sandbox case simulation exercises, this essay proposes seven procedures for start-up to efficiently go through with internal brainstorming while in preparation stage under a limited time. The last part of the study sets out four topics for practitioners and the competent authorities that are related to innovation, business, consumer protection and law compliance when negotiating the regulatory issues during experiments, hoping to provide a solid methodology beneficial to FinTech practitioners.
|
Page generated in 0.0404 seconds