{"678433":{"#nid":"678433","#data":{"type":"event","title":"PhD Defense  by  Miuyin Yong Wong","body":[{"value":"\u003Cp\u003E\u003Cstrong\u003ETitle:\u0026nbsp; \u003C\/strong\u003E\u003Cem\u003EUnderstanding Malware Analysis Workflows To Narrow the Gap Between Research and Practice\u003C\/em\u003E\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003EDate\/Time\u003C\/strong\u003E: Thursday, November 21, 2024, 3:30-5:30 pm\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003ELocation (in-person):\u003C\/strong\u003E\u0026nbsp;Coda C0915 Atlantic\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003EZoom Link\u003C\/strong\u003E: \u003Ca href=\u0022https:\/\/gatech.zoom.us\/j\/92369263856\u0022\u003E\u003Cstrong\u003Ehttps:\/\/gatech.zoom.us\/j\/92369263856\u003C\/strong\u003E\u003C\/a\u003E\u003C\/p\u003E\u003Cp\u003E\u0026nbsp;\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003EMiuyin Yong Wong\u003C\/strong\u003E\u003C\/p\u003E\u003Cp\u003EPh.D. Candidate in Computer Science\u003C\/p\u003E\u003Cp\u003ESchool of Cybersecurity and Privacy\u003C\/p\u003E\u003Cp\u003EGeorgia Institute of Technology\u003C\/p\u003E\u003Cp\u003E\u0026nbsp;\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003ECommittee:\u003C\/strong\u003E\u003C\/p\u003E\u003Cp\u003EDr. Mustaque Ahamad (Advisor), School of Cybersecurity and Privacy, Georgia Institute of Technology\u003C\/p\u003E\u003Cp\u003EDr. Fabian Monrose, School of Electrical and Computer Engineering, Georgia Institute of Technology\u003C\/p\u003E\u003Cp\u003EDr. Frank Li, School of Cybersecurity and Privacy, Georgia Institute of Technology\u003C\/p\u003E\u003Cp\u003EDr. Douglas Blough, School of Electrical and Computer Engineering, Georgia Institute of Technology\u003C\/p\u003E\u003Cp\u003EDr. Elissa Redmiles, Department of Computer Science, Georgetown University\u003C\/p\u003E\u003Cp\u003E\u0026nbsp;\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003EAbstract:\u0026nbsp;\u003C\/strong\u003E\u003C\/p\u003E\u003Cp\u003EMalicious software or malware presents a serious cybersecurity challenge, threatening individuals, organizations, and nation-states. To combat and prevent attacks launched with malware, it is essential to understand the malware\u2019s intent and its impact on targeted systems. This process is usually referred to as malware analysis. Over the years, there have been significant research advances in automating the process of malware analysis. Despite these advances, human analysts still play an indispensable role in keeping defenses against malware current and effective. Unfortunately, important parts of the manual analysis process used by analysts in practice remain unexplored.\u003C\/p\u003E\u003Cp\u003ETo help address this gap, this thesis explores human-centric approach to malware analysis. In this thesis, I begin by presenting the findings from two user studies with malware analysts in practice. These studies allowed us to define a taxonomy of malware analysts\u2019 objectives, identify analysis workflows, and highlight common challenges faced by these analysts. Next, I present the results of a comparative analysis that contrasts the findings from a systematic mapping of malware evasion countermeasures and insights gained from a user study on malware evasion. This comparison reveals several misalignments between the real challenges faced by malware experts dealing with evasive malware and the focus of research solutions. Moreover, it highlights future research directions that can help analysts overcome challenging evasion techniques. Lastly, I explore the effectiveness of Large Language Models (LLMs) as a human-centered tool to help analysts overcome some of the identified challenges that arise due to evasion tactics.\u0026nbsp;\u003C\/p\u003E\u003Cp\u003E\u0026nbsp;\u003C\/p\u003E","summary":"","format":"limited_html"}],"field_subtitle":"","field_summary":[{"value":"\u003Cp\u003E\u003Cem\u003EUnderstanding Malware Analysis Workflows To Narrow the Gap Between Research and Practice\u003C\/em\u003E\u003C\/p\u003E","format":"limited_html"}],"field_summary_sentence":[{"value":"Understanding Malware Analysis Workflows To Narrow the Gap Between Research and Practice"}],"uid":"27707","created_gmt":"2024-11-14 12:53:12","changed_gmt":"2024-11-14 12:53:12","author":"Tatianna Richardson","boilerplate_text":"","field_publication":"","field_article_url":"","field_event_time":{"event_time_start":"2024-11-21T15:30:00-05:00","event_time_end":"2024-11-21T17:30:00-05:00","event_time_end_last":"2024-11-21T17:30:00-05:00","gmt_time_start":"2024-11-21 20:30:00","gmt_time_end":"2024-11-21 22:30:00","gmt_time_end_last":"2024-11-21 22:30:00","rrule":null,"timezone":"America\/New_York"},"location":"Coda C0915 Atlantic","extras":[],"groups":[{"id":"221981","name":"Graduate Studies"}],"categories":[],"keywords":[{"id":"100811","name":"Phd Defense"}],"core_research_areas":[],"news_room_topics":[],"event_categories":[{"id":"1788","name":"Other\/Miscellaneous"}],"invited_audience":[{"id":"78771","name":"Public"}],"affiliations":[],"classification":[],"areas_of_expertise":[],"news_and_recent_appearances":[],"phone":[],"contact":[],"email":[],"slides":[],"orientation":[],"userdata":""}}}