YAKSHA aims at reinforcing EU-ASEAN cooperation & building partnerships in the cybersecurity domain by developing a solution tailored to the specific user and national needs, leveraging EU Know-How and local expertise.
The project will enhance cybersecurity readiness levels for its end users, help better prevent cyber-attacks, reduce cyber risks and better govern the whole cybersecurity process. YAKSHA will develop and introduce the innovative concept of honeypots-as-a-service which will greatly enhance the process of gathering threat intelligence. It will enhance cybersecurity readiness levels for end users, help prevent cyber-attacks, mitigate cyber risks and better govern the whole cybersecurity process. YAKSHA is ideally positioned to secure global manufacturing supply chains, given its planned focus on IoT Security.
We contribute to the technical innovation of YAKSHA. Particularly, we have developed the YAKSHA correlation engine for malware behavior analysis based on traces of system calls monitored from malware execution on a target system. The correlation engine uses machine learning for clustering and classification of malware behavior. It identifies classes of malware with similar behavior and helps organisations understand if malware affecting their systems have common models of behavior. It also identifies malware samples with distinguishable behavioral patterns and allows organisations to focus their mitigation and countermeasure activities on fewer but representative samples instead of analyzing all samples with similar behavior.