Zobrazit v EDS

Code Type Revealing Using Experiments Framework

Uloženo v:
Podrobná bibliografie
Název: Code Type Revealing Using Experiments Framework
Autoři: Sharon, Rami, Gudes, Ehud
Přispěvatelé: Open University of Israël, Ben-Gurion University of the Negev (BGU), Nora Cuppens-Boulahia, Frédéric Cuppens, Joaquin Garcia-Alfaro, TC 11, WG 11.3
Zdroj: Lecture Notes in Computer Science ; 26th Conference on Data and Applications Security and Privacy (DBSec) ; https://inria.hal.science/hal-01534762 ; 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. pp.193-206, ⟨10.1007/978-3-642-31540-4_15⟩
Informace o vydavateli: CCSD
Springer
Rok vydání: 2012
Témata: File Type, Content type revealing framework, Code type, Byte N-Gram statistical analysis, [INFO]Computer Science [cs]
Geografické téma: Paris, France
Popis: Part 6: Data Management ; International audience ; Identifying the type of a code, whether in a file or byte stream, is a challenge that many software companies are facing. Many applications, security and others, base their behavior on the type of code they receive as an input.Today’s traditional identification methods rely on file extensions, magic numbers, propriety headers and trailers or specific type identifying rules. All these are vulnerable to content tampering and discovering it requires investing long and tedious working hours of professionals. This study is aimed to find a method of identifying the best settings to automatically create type signatures that will effectively overcome the content manipulation problem.In this paper we lay out a framework for creating type signatures based on byte N-Grams. The framework allows setting various parameters such as NGram sizes and windows, selecting statistical tests and defining rules for score calculations. The framework serves as a test lab that allows finding the right parameters to satisfy a predefined threshold of type identification accuracy. We demonstrate the framework using basic settings that achieved an F-Measure success rate of 0.996 on 1400 test files.
Druh dokumentu: conference object
Jazyk: English
DOI: 10.1007/978-3-642-31540-4_15
Dostupnost: https://inria.hal.science/hal-01534762
https://inria.hal.science/hal-01534762v1/document
https://inria.hal.science/hal-01534762v1/file/978-3-642-31540-4_15_Chapter.pdf
https://doi.org/10.1007/978-3-642-31540-4_15
Rights: http://creativecommons.org/licenses/by/ ; info:eu-repo/semantics/OpenAccess
Přístupové číslo: edsbas.D36027C5
Databáze: BASE
FullText Text:
  Availability: 0
CustomLinks:
  – Url: https://inria.hal.science/hal-01534762#
    Name: EDS - BASE (s4221598)
    Category: fullText
    Text: View record from BASE
  – Url: https://www.webofscience.com/api/gateway?GWVersion=2&SrcApp=EBSCO&SrcAuth=EBSCO&DestApp=WOS&ServiceName=TransferToWoS&DestLinkType=GeneralSearchSummary&Func=Links&author=Sharon%20R
    Name: ISI
    Category: fullText
    Text: Nájsť tento článok vo Web of Science
    Icon: https://imagesrvr.epnet.com/ls/20docs.gif
    MouseOverText: Nájsť tento článok vo Web of Science
Header DbId: edsbas
DbLabel: BASE
An: edsbas.D36027C5
RelevancyScore: 859
AccessLevel: 3
PubType: Conference
PubTypeId: conference
PreciseRelevancyScore: 858.984313964844
IllustrationInfo
Items – Name: Title
  Label: Title
  Group: Ti
  Data: Code Type Revealing Using Experiments Framework
– Name: Author
  Label: Authors
  Group: Au
  Data: <searchLink fieldCode="AR" term="%22Sharon%2C+Rami%22">Sharon, Rami</searchLink><br /><searchLink fieldCode="AR" term="%22Gudes%2C+Ehud%22">Gudes, Ehud</searchLink>
– Name: Author
  Label: Contributors
  Group: Au
  Data: Open University of Israël<br />Ben-Gurion University of the Negev (BGU)<br />Nora Cuppens-Boulahia<br />Frédéric Cuppens<br />Joaquin Garcia-Alfaro<br />TC 11<br />WG 11.3
– Name: TitleSource
  Label: Source
  Group: Src
  Data: Lecture Notes in Computer Science ; 26th Conference on Data and Applications Security and Privacy (DBSec) ; https://inria.hal.science/hal-01534762 ; 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. pp.193-206, ⟨10.1007/978-3-642-31540-4_15⟩
– Name: Publisher
  Label: Publisher Information
  Group: PubInfo
  Data: CCSD<br />Springer
– Name: DatePubCY
  Label: Publication Year
  Group: Date
  Data: 2012
– Name: Subject
  Label: Subject Terms
  Group: Su
  Data: <searchLink fieldCode="DE" term="%22File+Type%22">File Type</searchLink><br /><searchLink fieldCode="DE" term="%22Content+type+revealing+framework%22">Content type revealing framework</searchLink><br /><searchLink fieldCode="DE" term="%22Code+type%22">Code type</searchLink><br /><searchLink fieldCode="DE" term="%22Byte+N-Gram+statistical+analysis%22">Byte N-Gram statistical analysis</searchLink><br /><searchLink fieldCode="DE" term="%22[INFO]Computer+Science+[cs]%22">[INFO]Computer Science [cs]</searchLink>
– Name: Subject
  Label: Subject Geographic
  Group: Su
  Data: <searchLink fieldCode="DE" term="%22Paris%22">Paris</searchLink><br /><searchLink fieldCode="DE" term="%22France%22">France</searchLink>
– Name: Abstract
  Label: Description
  Group: Ab
  Data: Part 6: Data Management ; International audience ; Identifying the type of a code, whether in a file or byte stream, is a challenge that many software companies are facing. Many applications, security and others, base their behavior on the type of code they receive as an input.Today’s traditional identification methods rely on file extensions, magic numbers, propriety headers and trailers or specific type identifying rules. All these are vulnerable to content tampering and discovering it requires investing long and tedious working hours of professionals. This study is aimed to find a method of identifying the best settings to automatically create type signatures that will effectively overcome the content manipulation problem.In this paper we lay out a framework for creating type signatures based on byte N-Grams. The framework allows setting various parameters such as NGram sizes and windows, selecting statistical tests and defining rules for score calculations. The framework serves as a test lab that allows finding the right parameters to satisfy a predefined threshold of type identification accuracy. We demonstrate the framework using basic settings that achieved an F-Measure success rate of 0.996 on 1400 test files.
– Name: TypeDocument
  Label: Document Type
  Group: TypDoc
  Data: conference object
– Name: Language
  Label: Language
  Group: Lang
  Data: English
– Name: DOI
  Label: DOI
  Group: ID
  Data: 10.1007/978-3-642-31540-4_15
– Name: URL
  Label: Availability
  Group: URL
  Data: https://inria.hal.science/hal-01534762<br />https://inria.hal.science/hal-01534762v1/document<br />https://inria.hal.science/hal-01534762v1/file/978-3-642-31540-4_15_Chapter.pdf<br />https://doi.org/10.1007/978-3-642-31540-4_15
– Name: Copyright
  Label: Rights
  Group: Cpyrght
  Data: http://creativecommons.org/licenses/by/ ; info:eu-repo/semantics/OpenAccess
– Name: AN
  Label: Accession Number
  Group: ID
  Data: edsbas.D36027C5
PLink https://erproxy.cvtisr.sk/sfx/access?url=https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=edsbas&AN=edsbas.D36027C5
RecordInfo BibRecord:
  BibEntity:
    Identifiers:
      – Type: doi
        Value: 10.1007/978-3-642-31540-4_15
    Languages:
      – Text: English
    Subjects:
      – SubjectFull: Paris
        Type: general
      – SubjectFull: France
        Type: general
      – SubjectFull: File Type
        Type: general
      – SubjectFull: Content type revealing framework
        Type: general
      – SubjectFull: Code type
        Type: general
      – SubjectFull: Byte N-Gram statistical analysis
        Type: general
      – SubjectFull: [INFO]Computer Science [cs]
        Type: general
    Titles:
      – TitleFull: Code Type Revealing Using Experiments Framework
        Type: main
  BibRelationships:
    HasContributorRelationships:
      – PersonEntity:
          Name:
            NameFull: Sharon, Rami
      – PersonEntity:
          Name:
            NameFull: Gudes, Ehud
      – PersonEntity:
          Name:
            NameFull: Open University of Israël
      – PersonEntity:
          Name:
            NameFull: Ben-Gurion University of the Negev (BGU)
      – PersonEntity:
          Name:
            NameFull: Nora Cuppens-Boulahia
      – PersonEntity:
          Name:
            NameFull: Frédéric Cuppens
      – PersonEntity:
          Name:
            NameFull: Joaquin Garcia-Alfaro
      – PersonEntity:
          Name:
            NameFull: TC 11
      – PersonEntity:
          Name:
            NameFull: WG 11.3
    IsPartOfRelationships:
      – BibEntity:
          Dates:
            – D: 01
              M: 01
              Type: published
              Y: 2012
          Identifiers:
            – Type: issn-locals
              Value: edsbas
            – Type: issn-locals
              Value: edsbas.oa
          Titles:
            – TitleFull: Lecture Notes in Computer Science ; 26th Conference on Data and Applications Security and Privacy (DBSec) ; https://inria.hal.science/hal-01534762 ; 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. pp.193-206, ⟨10.1007/978-3-642-31540-4_15⟩
              Type: main
ResultId 1